cbcvebase.
CVE-2026-25525
published 2026-04-20

CVE-2026-25525: Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a…

PriorityP431medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
EPSS
0.50%
39.1th percentile
Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. Prior to version 20.17.0, the Dataflow module in OpenMage LTS uses a weak blacklist filter (`str_replace('../', '', $input)`) to prevent path traversal attacks. This filter can be bypassed using patterns like `..././` or `....//`, which after the replacement still result in `../`. An authenticated administrator can exploit this to read arbitrary files from the server filesystem. Version 20.17.0 patches the issue.

Affected

3 ranges
VendorProductVersion rangeFixed in
openmagemagento< 20.17.020.17.0
openmagemagento-lts< 20.17.020.17.0
openmagemagento-lts>= 0 < 20.17.020.17.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.