Back to CVE List

CVE-2026-42207

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score

6.1 / 10

Vulnerability Description

Magento LTS Vulnerable to Open Redirect via Unvalidated `uenc` Parameter in `stockAction()`

Vulnerability Details

Published Date

May 05, 2026

Last Modified

May 05, 2026

Source

GitHub

Vendor

composer

Product

openmage/magento-lts

External References

Discussion (0)

Add Comment

No comments yet. Be the first!