Vulnerability Description
OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, an administrator with permission to import/export data and to edit cms pages was able to inject an executable file on the server via layout xml. The latest OpenMage Versions up from 19.4.9 and 20.0.5 have this Issue solved
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openmage | Openmage | < 19.4.10 |
Related Weaknesses (CWE)
References
- https://github.com/OpenMage/magento-lts/commit/9cf8c0aa1d1306051a18ace08d40279daPatchThird Party Advisory
- https://github.com/OpenMage/magento-lts/releases/tag/v19.4.10Third Party Advisory
- https://github.com/OpenMage/magento-lts/security/advisories/GHSA-52c6-6v3v-f3fgThird Party Advisory
- https://github.com/OpenMage/magento-lts/commit/9cf8c0aa1d1306051a18ace08d40279daPatchThird Party Advisory
- https://github.com/OpenMage/magento-lts/releases/tag/v19.4.10Third Party Advisory
- https://github.com/OpenMage/magento-lts/security/advisories/GHSA-52c6-6v3v-f3fgThird Party Advisory
FAQ
What is CVE-2020-26295?
CVE-2020-26295 is a vulnerability with a CVSS score of 8.7 (HIGH). OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, an administrator with permission to import/export data and to edit cms pages was able to injec...
How severe is CVE-2020-26295?
CVE-2020-26295 has been rated HIGH with a CVSS base score of 8.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-26295?
Check the references section above for vendor advisories and patch information. Affected products include: Openmage Openmage.