Known Vulnerabilities for Magento by Openmage
Listed below are 10 of the newest known vulnerabilities associated with "Magento" by "Openmage".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40488 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-40098 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-25525 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-25524 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2025-58669 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modern Minds Magento 2 ... | Not Provided | 2025-09-22 | 2026-04-01 |
| CVE-2023-41879 json | Magento LTS is the official OpenMage LTS codebase. Guest orders may be viewed without authentication using a "guest-view" coo... | 7.5 - HIGH | 2023-09-11 | 2023-09-15 |
| CVE-2023-23617 json | OpenMage LTS is an e-commerce platform. Versions prior to 19.4.22 and 20.0.19 contain an infinite loop in malicious code filt... | 7.5 - HIGH | 2023-01-28 | 2023-02-07 |
| CVE-2021-41231 json | OpenMage LTS is an e-commerce platform. Prior to versions 19.4.22 and 20.0.19, an administrator with the permissions to uploa... | 7.2 - HIGH | 2023-01-27 | 2023-11-07 |
| CVE-2021-41144 json | OpenMage LTS is an e-commerce platform. Prior to versions 19.4.22 and 20.0.19, a layout block was able to bypass the block bl... | 8.8 - HIGH | 2023-01-27 | 2023-11-07 |
| CVE-2021-41143 json | OpenMage LTS is an e-commerce platform. Prior to versions 19.4.22 and 20.0.19, Magento admin users with access to the custome... | 7.2 - HIGH | 2023-01-27 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Openmage | Magento | 20.0.7 | |||
| Application | Openmage | Magento | 20.0.6 | |||
| Application | Openmage | Magento | 20.0.5 | |||
| Application | Openmage | Magento | 20.0.4 | |||
| Application | Openmage | Magento | 20.0.3 | |||
| Application | Openmage | Magento | 20.0.2 | |||
| Application | Openmage | Magento | 20.0.1 | |||
| Application | Openmage | Magento | 20.0.0 | |||
| Application | Openmage | Magento | 19.4.9 | |||
| Application | Openmage | Magento | 19.4.8 | |||
| Application | Openmage | Magento | 19.4.7 | |||
| Application | Openmage | Magento | 19.4.6 | |||
| Application | Openmage | Magento | 19.4.5 | |||
| Application | Openmage | Magento | 19.4.4 | |||
| Application | Openmage | Magento | 19.4.3 | |||
| Application | Openmage | Magento | 19.4.2 | |||
| Application | Openmage | Magento | 19.4.11 | |||
| Application | Openmage | Magento | 19.4.10 | |||
| Application | Openmage | Magento | 19.4.1 | |||
| Application | Openmage | Magento | 19.4.0 |