Vulnerabilidades em OpenMage
27 resultadosCVE-2020-26285HIGHWidget instances allows a hacker to inject an executable file on the server on OpenMageEPSS 2.9%CVE-2020-26252HIGHLayout XML RCE Vulnerability in OpenMageEPSS 2.1%CVE-2021-32758HIGHLayout XML Arbitrary Code FixEPSS 2.0%CVE-2020-26295HIGHCMS Editor code executionEPSS 1.8%CVE-2021-39217HIGHOpenMage LTS arbitrary command execution in custom layout update through blocksEPSS 1.3%CVE-2021-32759HIGHData Flow Sanitation Issue FixEPSS 1.3%CVE-2021-41143HIGHOpenMage LTS arbitrary file deletion in customer media allows for remote code executionEPSS 1.3%CVE-2020-15244HIGHRCE in MagentoEPSS 1.2%CVE-2021-41231HIGHOpenMage LTS DataFlow upload remote code execution vulnerabilityEPSS 1.2%CVE-2021-21426CRITICALFixes a bug in Zend Framework's Stream HTTP WrapperEPSS 1.2%CVE-2021-41144HIGHOpenMage LTS authenticated remote code execution through layout updateEPSS 1.2%CVE-2021-21427CRITICALBackport for CVE-2021-21024 Blind SQLi from Magento 2EPSS 1.1%CVE-2023-23617MEDIUMOpenMage LTS has DoS vulnerability in MaliciousCode filterEPSS 1.0%CVE-2020-15151HIGHObservable Timing Discrepancy in OpenMage LTSEPSS 0.9%CVE-2023-41879HIGHMagento LTS's guest order "protect code" can be brute-forced too easilyEPSS 0.8%CVE-2026-40488HIGHOpenMage LTS has Customer File Upload Extension Blocklist Bypass that Leads to Remote Code ExecutionEPSS 0.7%CVE-2026-25524HIGHOpenMage LTS's Phar Deserialization leads to Remote Code ExecutionEPSS 0.5%CVE-2026-25525MEDIUMOpenMage LTS has Path Traversal Filter Bypass in Dataflow ModuleEPSS 0.5%CVE-2021-21395MEDIUMMagneto-lts vulnerable to Cross-Site Request ForgeryEPSS 0.4%CVE-2024-41676MEDIUMMagento LTS vulnerable to stored Cross-site Scripting (XSS) in admin system configsEPSS 0.3%