Vulnerabilities > Openmage > Openmage Long Term Support

DATE CVE VULNERABILITY TITLE RISK
2020-08-20 CVE-2020-15151 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
OpenMage LTS before versions 19.4.6 and 20.0.2 allows attackers to circumvent the `fromkey protection` in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks.
network
high complexity
openmage magento CWE-352
4.0