Known Vulnerabilities for Magento by Openmage
Listed below are 10 of the newest known vulnerabilities associated with "Magento" by "Openmage".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-45247 json | Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains a PHP object injection vulnerability that allow... | Not Provided | 2026-05-26 | 2026-05-26 |
| CVE-2026-42458 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-05-15 | 2026-05-15 |
| CVE-2026-42207 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-05-15 | 2026-05-15 |
| CVE-2026-42155 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-05-15 | 2026-05-15 |
| CVE-2026-40488 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-40098 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-25525 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-21 |
| CVE-2026-25524 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2025-58669 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modern Minds Magento 2 ... | Not Provided | 2025-09-22 | 2026-04-23 |
| CVE-2023-41879 json | Magento LTS is the official OpenMage LTS codebase. Guest orders may be viewed without authentication using a "guest-view" coo... | 7.5 - HIGH | 2023-09-11 | 2023-09-15 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Openmage | Magento | 20.0.7 | |||
| Application | Openmage | Magento | 20.0.6 | |||
| Application | Openmage | Magento | 20.0.5 | |||
| Application | Openmage | Magento | 20.0.4 | |||
| Application | Openmage | Magento | 20.0.3 | |||
| Application | Openmage | Magento | 20.0.2 | |||
| Application | Openmage | Magento | 20.0.1 | |||
| Application | Openmage | Magento | 20.0.0 | |||
| Application | Openmage | Magento | 19.4.9 | |||
| Application | Openmage | Magento | 19.4.8 | |||
| Application | Openmage | Magento | 19.4.7 | |||
| Application | Openmage | Magento | 19.4.6 | |||
| Application | Openmage | Magento | 19.4.5 | |||
| Application | Openmage | Magento | 19.4.4 | |||
| Application | Openmage | Magento | 19.4.3 | |||
| Application | Openmage | Magento | 19.4.2 | |||
| Application | Openmage | Magento | 19.4.11 | |||
| Application | Openmage | Magento | 19.4.10 | |||
| Application | Openmage | Magento | 19.4.1 | |||
| Application | Openmage | Magento | 19.4.0 |