CVE-2026-25525

CVSS Score & Metrics

Base Score

4.9 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N                                    

Vulnerability Description

Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. Prior to version 20.17.0, the Dataflow module in OpenMage LTS uses a weak blacklist filter (`str_replace('../', '', $input)`) to prevent path traversal attacks. This filter can be bypassed using patterns like `..././` or `....//`, which after the replacement still result in `../`. An authenticated administrator can exploit this to read arbitrary files from the server filesystem. Version 20.17.0 patches the issue.

Vulnerability Details

Published Date

April 20, 2026

Last Modified

April 20, 2026

CWE ID

CWE-22

Source

NVD

Vendor

OpenMage

Product

magento-lts

External References

https://github.com/OpenMage/magento-lts/security/advisories/GHSA-6vqf-6fhm-7rc6

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment