Read Time:22 Second

Magneto LTS (Long Term Support) is a community developed alternative to the Magento CE official releases. Versions prior to 19.4.22 and 20.0.19 are vulnerable to Cross-Site Request Forgery. The password reset form is vulnerable to CSRF between the time the reset password link is clicked and user submits new password. This issue is patched in versions 19.4.22 and 20.0.19. There are no workarounds.

Read More

More Stories

rpki-client-9.5-1.el10_0

FEDORA-EPEL-2025-2ec16b3a94 Packages in this update: rpki-client-9.5-1.el10_0 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc41

FEDORA-2025-17fed14cc3 Packages in this update: rpki-client-9.5-1.fc41 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc40

FEDORA-2025-d5fdbedb7f Packages in this update: rpki-client-9.5-1.fc40 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.el9

FEDORA-EPEL-2025-f8a9a83d41 Packages in this update: rpki-client-9.5-1.el9 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.el10_1

FEDORA-EPEL-2025-f8fbd7b9af Packages in this update: rpki-client-9.5-1.el10_1 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....

rpki-client-9.5-1.fc42

FEDORA-2025-3887603605 Packages in this update: rpki-client-9.5-1.fc42 Update description: rpki-client 9.5 rpki-client now includes arin.tal which is no longer legally encumbered....