Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/OpenMage/magento-lts
Official OpenMage LTS codebase | Migrate easily from Magento Community Edition in minutes! Download the source code for free or contribute to OpenMage LTS | Security vulnerability patches, bug fixes, performance improvements and more.
https://github.com/OpenMage/magento-lts
Moderate
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: 5 months ago
GSA_kwCzR0hTQS01dnJwLTYzOHctcDhtMs4AA-MY
Magento LTS vulnerable to stored Cross-site Scripting (XSS) in admin system configsEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: 5 months ago
Moderate
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: 10 months ago
GSA_kwCzR0hTQS1ncDZtLWZxNmgtY2pjeM4AA5jQ
Magento LTS vulnerable to stored XSS in admin file formEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: 10 months ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: about 1 year ago
GSA_kwCzR0hTQS05ajV3LTJjcWMtY3dqOc4AA3oh
Magento LTS vulnerable to Stored XSS via TinyMCE WYSIWYG EditorEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: about 1 year ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 1 year ago
GSA_kwCzR0hTQS05MzU4LWNwdngtYzJxcM4AA1zS
Magento LTS's guest order "protect code" can be brute-forced too easilyEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 1 year ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1oNjMyLXA3NjQtcGpxbc4AAxOZ
DataFlow upload remote code execution vulnerabilityEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS01ajJnLTNwaDQtcmd2bc4AAxOY
Fix for authenticated remote code execution through layout updateEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS0zcDczLW1tN3YtNGY2bc4AAxOW
DoS vulnerability in MaliciousCode filterEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS01dnB2LXhtY2otOXE4Nc4AAxOV
Fix for arbitrary file deletion in customer media allows for remote code executionEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1jOXEzLXI0cnYtbWptN84AAxOU
Fix for arbitrary command execution in custom layout update through blocksEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1yM2M5LTlqNXEtcHd2NM4AAxJH
magento-lts Reset Password not protected against well-timed CSRFEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: almost 2 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2cnItdjJqMi0yNWZo
Layout XML Arbitrary Code FixEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhtOWYtdnhteC00bTU4
Data Flow Sanitation Issue FixEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
Critical
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ2cmYtOTQyOC01Mjdt
Backport for CVE-2021-21024 Blind SQLi from Magento 2Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
Critical
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00OTYteDU2Ny1mOThj
Fixes a bug in Zend Framework's Stream HTTP WrapperEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 3 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpyZ2YtdmZ3Mi1oajI2
RCE via PHP Object injection via SOAP RequestsEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: about 4 years ago
High
Ecosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyZjIteG02eC00NnA2
Observable Timing Discrepancy in OpenMage LTSEcosystems: packagist
Packages: openmage/magento-lts
Source: github
Published: over 4 years ago