openmage/magento-lts Security Advisories for v20.9.0 (2)
-
[LOW] Magento LTS vulnerable to stored XSS in theme config fields
PKSA-626k-1yg1-m164 CVE-2025-27400 GHSA-5pxh-89cx-4668
Affected version: <20.12.3
Reported by:
GitHub -
[MEDIUM] Magento LTS vulnerable to stored Cross-site Scripting (XSS) in admin system configs
PKSA-w1pc-fvwg-8vsf CVE-2024-41676 GHSA-5vrp-638w-p8m2
Affected version: <20.10.1
Reported by:
GitHub