Vulnerabilities > Shopware

DATE CVE VULNERABILITY TITLE RISK
2022-04-28 CVE-2022-24879 Cross-Site Request Forgery (CSRF) vulnerability in Shopware
Shopware is an open source e-commerce software platform.
network
low complexity
shopware CWE-352
5.0
2022-04-28 CVE-2022-24892 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Shopware
Shopware is an open source e-commerce software platform.
network
shopware CWE-640
6.8
2022-04-28 CVE-2022-24873 Cross-site Scripting vulnerability in Shopware
Shopware is an open source e-commerce software platform.
network
shopware CWE-79
4.3
2022-04-20 CVE-2022-24872 Incorrect Permission Assignment for Critical Resource vulnerability in Shopware
Shopware is an open commerce platform based on Symfony Framework and Vue.
network
low complexity
shopware CWE-732
5.5
2022-04-20 CVE-2022-24871 Server-Side Request Forgery (SSRF) vulnerability in Shopware
Shopware is an open commerce platform based on Symfony Framework and Vue.
network
low complexity
shopware CWE-918
5.5
2022-03-29 CVE-2022-24956 SQL Injection vulnerability in Shopware B2B Suite
An issue was discovered in Shopware B2B-Suite through 4.4.1.
network
low complexity
shopware CWE-89
4.0
2022-03-09 CVE-2022-24744 Insufficient Session Expiration vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
shopware CWE-613
3.5
2022-03-09 CVE-2022-24745 Session Fixation vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
shopware CWE-384
5.8
2022-03-09 CVE-2022-24746 Cross-site Scripting vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
shopware CWE-79
4.3
2022-03-09 CVE-2022-24747 Information Exposure vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
low complexity
shopware CWE-200
5.0