| Title |
Severity |
Exploit |
Date |
Affected Version |
|
CVE-2025-27400
|
Low
|
|
Mar 3, 2025
|
< 20.12.3
|
|
CVE-2024-41676
|
Low
|
|
Jul 29, 2024
|
< 20.10.1
|
|
Magento LTS vulnerable to stored XSS in admin file form
|
Medium
|
|
Feb 27, 2024
|
>= 20.0.0 < 20.5.0
< 19.5.3
|
|
Magento LTS vulnerable to Stored XSS via TinyMCE WYSIWYG Editor
|
High
|
|
Dec 8, 2023
|
< 20.2.0
|
|
CVE-2023-41879
|
High
|
|
Sep 12, 2023
|
< 19.5.1
>= 20.0.0 < 20.1.1
|
|
CVE-2023-23617
|
High
|
|
Jan 28, 2023
|
< 19.4.22
>= 20.0.0 < 20.0.19
|
|
CVE-2021-41144
|
High
|
|
Jan 27, 2023
|
< 19.4.22
>= 20.0.0 < 20.0.19
|
|
CVE-2021-41143
|
High
|
|
Jan 27, 2023
|
< 19.4.22
>= 20.0.0 < 20.0.19
|
|
CVE-2021-41231
|
High
|
|
Jan 27, 2023
|
< 19.4.22
>= 20.0.0 < 20.0.19
|
|
CVE-2021-39217
|
High
|
|
Jan 27, 2023
|
< 19.4.22
>= 20.0.0 < 20.0.19
|
openmage / magento-lts