OpenMage magento-lts is an alternative to the Magento CE official releases. Due to missing sanitation in data flow in versions prior to 19.4.15 and 20.0.13, it was possible for admin users to upload arbitrary executable files to the server. OpenMage versions 19.4.15 and 20.0.13 have a patch for this Issue.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: GitHub_M
Published: 2021-08-27T22:00:11
Updated: 2024-08-03T23:33:55.914Z
Reserved: 2021-05-12T00:00:00
Link: CVE-2021-32759

No data.

Status : Modified
Published: 2021-08-27T22:15:07.193
Modified: 2024-11-21T06:07:40.983
Link: CVE-2021-32759

No data.