Vulnerabilities > Shopware

DATE CVE VULNERABILITY TITLE RISK
2021-08-16 CVE-2021-37711 Server-Side Request Forgery (SSRF) vulnerability in Shopware
Versions prior to 6.4.3.1 contain an authenticated server-side request forgery vulnerability in file upload via URL.
network
low complexity
shopware CWE-918
6.5
6.5
2021-08-16 CVE-2021-37709 Authorization Bypass Through User-Controlled Key vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware CWE-639
4.0
4.0
2021-08-16 CVE-2021-37708 OS Command Injection vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware CWE-78
critical
 9.8
9.8
2021-08-16 CVE-2021-37707 Unspecified vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware
5.0
5.0
2021-06-24 CVE-2021-32712 Information Exposure Through an Error Message vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware CWE-209
5.0
5.0
2021-06-24 CVE-2021-32713 Cross-site Scripting vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
shopware CWE-79
3.5
3.5
2021-06-24 CVE-2021-32716 Incorrect Authorization vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware CWE-863
4.9
4.9
2021-06-24 CVE-2021-32717 Incorrect Permission Assignment for Critical Resource vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware CWE-732
7.5
7.5
2021-06-24 CVE-2021-32710 Session Fixation vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware CWE-384
5.0
5.0
2021-06-24 CVE-2021-32711 Information Exposure vulnerability in Shopware
Shopware is an open source eCommerce platform.
network
low complexity
shopware CWE-200
5.0
5.0