CVE-2026-25525 | OpenMage magento-lts up to 20.16.x Dataflow path traversal (GHSA-6vqf-6fhm-7rc6)

A vulnerability was found in OpenMage magento-lts up to 20.16.x and classified as critical. This impacts an unknown function of the component Dataflow Module. Such manipulation leads to path traversal.

This vulnerability is traded as CVE-2026-25525. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More