[MEDIUM] Magento Improper Access Control leads to Security feature bypass

PKSA-dgwq-v9zk-5py2 CVE-2025-27190 GHSA-6wq7-cg9h-mj6q

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub