Package impact
COMPOSER / openmage/magento-lts
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-42207 | medium | 6.1 | 6.1 | 25d ago | Magento LTS Vulnerable to Open Redirect via Unvalidated `uenc` Parameter in `stockAction()` | |||
| CVE-2026-42458 | medium | — | 5.5 | 24d ago | Magento LTS: Reflected XSS - Import -> Data Flow (profiles) |