Vulnerabilities > Shopware

DATE CVE VULNERABILITY TITLE RISK
2022-03-29 CVE-2022-24956 SQL Injection vulnerability in Shopware B2B Suite
An issue was discovered in Shopware B2B-Suite through 4.4.1.
network
low complexity
shopware CWE-89
4.0
4.0
2022-03-09 CVE-2022-24744 Insufficient Session Expiration vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
shopware CWE-613
3.5
3.5
2022-03-09 CVE-2022-24745 Session Fixation vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
shopware CWE-384
5.8
5.8
2022-03-09 CVE-2022-24746 Cross-site Scripting vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
shopware CWE-79
4.3
4.3
2022-03-09 CVE-2022-24747 Exposure of Resource to Wrong Sphere vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
low complexity
shopware CWE-668
5.3
5.3
2022-03-09 CVE-2022-24748 Incorrect Authorization vulnerability in Shopware
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework.
network
low complexity
shopware CWE-863
7.5
7.5
2022-01-05 CVE-2022-21651 Open Redirect vulnerability in Shopware
Shopware is an open source e-commerce software platform.
network
shopware CWE-601
5.8
5.8
2022-01-05 CVE-2022-21652 Insufficient Session Expiration vulnerability in Shopware
Shopware is an open source e-commerce software platform.
network
low complexity
shopware CWE-613
5.5
5.5
2021-10-26 CVE-2021-41188 Cross-site Scripting vulnerability in Shopware
Shopware is open source e-commerce software.
network
shopware CWE-79
3.5
3.5
2021-08-16 CVE-2021-37710 Cross-site Scripting vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
shopware CWE-79
3.5
3.5