Security Intel Hub 6+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

High

v20.17.0 Security Advisory: Phar Deserialization, Path Traversal, Upload Bypass

github.com · 2026-04-21

OpenMage/magento-lts v20.17.0

High

OpenMage LTS Phar Deserialization RCE (CVE-2026-25524) Advisory and POC

CVE-2026-25524 · github.com · 2026-04-21

OpenMage LTS < 20.16.0

Medium

OpenMage LTS Dataflow Path Traversal Vulnerability (CVE-2026-25525) Analysis

CVE-2026-25525 · github.com · 2026-04-21

OpenMage LTS < 20.16.1

Medium

CVE-2024-40098: OpenMage Magento Cross-User Wishlist IDOR and File Disclosure

CVE-2024-40098 · github.com · 2026-04-21

OpenMage/magento-lts <= 20.16.0

Critical

OpenMage LTS File Upload Blacklist Bypass Leading to RCE

github.com · 2026-04-21

OpenMage/magento-lts <= 20.16.0

Medium

Magento CVE-2025-64174 Admin XSS Vulnerability with PoC

CVE-2025-64174 · github.com · 2025-11-09

OpenMage/magento-lts < 20.16.0

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 6+

v20.17.0 Security Advisory: Phar Deserialization, Path Traversal, Upload Bypass

OpenMage LTS Phar Deserialization RCE (CVE-2026-25524) Advisory and POC

OpenMage LTS Dataflow Path Traversal Vulnerability (CVE-2026-25525) Analysis

CVE-2024-40098: OpenMage Magento Cross-User Wishlist IDOR and File Disclosure

OpenMage LTS File Upload Blacklist Bypass Leading to RCE

Magento CVE-2025-64174 Admin XSS Vulnerability with PoC