Skip to main content

Openmage Long Term Support

1 CVEs product

Monthly

CVE-2020-15151 PHP HIGH PATCH This Week

OpenMage LTS before versions 19.4.6 and 20.0.2 allows attackers to circumvent the `fromkey protection` in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, no authentication required.

Adobe CSRF Openmage Long Term Support Magento
NVD GitHub
CVSS 3.1
8.0
EPSS
0.9%
EPSS 1% CVSS 8.0
HIGH PATCH This Week

OpenMage LTS before versions 19.4.6 and 20.0.2 allows attackers to circumvent the `fromkey protection` in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, no authentication required.

Adobe CSRF Openmage Long Term Support +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy