[MEDIUM] Magento LTS Vulnerable to Open Redirect via Unvalidated `uenc` Parameter in `stockAction()`

PKSA-3c4m-s9d4-ycyr CVE-2026-42207 GHSA-qpgq-5g92-j5q8

Affected package: openmage/magento-lts

Affected version: <=20.17.0

Reported by:
GitHub