[MEDIUM] Magento Improper Access Control leads to Security feature bypass

PKSA-j33z-72k7-nwyn CVE-2025-27191 GHSA-vhcq-4xrm-2cr2

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub