CVE-2021-41143

Name of the Vulnerable Software and Affected Versions OpenMage LTS versions prior to 19.4.22 OpenMage LTS versions prior to 20.0.19

Description The issue affects OpenMage LTS, an e-commerce platform. Magento admin users with access to the customer media could execute code on the server.

Recommendations For versions prior to 19.4.22, update to version 19.4.22 or later. For versions prior to 20.0.19, update to version 20.0.19 or later.