Security Advisories - shopware/core - Packagist

shopware/core Security Advisories for 6.4.15.0 (6)

Improper Control of Generation of Code in Twig rendered views

CVE-2023-2017

Affected version: <=6.4.20.0

Reported by:
GitHub
Shopware has Improper Input Validation issue in newsletter subscription

CVE-2023-22734

Affected version: <=6.4.18.0

Reported by:
GitHub
Shopware has Insufficient Session Expiration in Administration

CVE-2023-22732

Affected version: <=6.4.18.0

Reported by:
GitHub
Shopware's log module vulnerable to Improper Output Neutralization

CVE-2023-22733

Affected version: <=6.4.18.0

Reported by:
GitHub
Shopware vulnerable to Improper Control of Generation of Code in Twig rendered views

CVE-2023-22731

Affected version: <=6.4.18.0

Reported by:
GitHub
Shopware vulnerable to Improper Input Validation of Clearance sale in cart

CVE-2023-22730

Affected version: <=6.4.18.0

Reported by:
GitHub