Vulnerabilities > Shopware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-08 | CVE-2024-42354 | Unspecified vulnerability in Shopware Shopware is an open commerce platform. | 5.9 |
| 2024-01-16 | CVE-2024-22407 | Improper Access Control vulnerability in Shopware Shopware is an open headless commerce platform. | 6.5 |
| 2023-06-27 | CVE-2023-34098 | Information Exposure vulnerability in Shopware Shopware is an open source e-commerce software. | 5.3 |
| 2023-06-27 | CVE-2023-34099 | Improper Check for Unusual or Exceptional Conditions vulnerability in Shopware Shopware is an open source e-commerce software. | 5.3 |
| 2023-04-21 | CVE-2022-48150 | Cross-site Scripting vulnerability in Shopware 5.5.10 Shopware v5.5.10 was discovered to contain a cross-site scripting (XSS) vulnerability via the recovery/install/ URI. | 6.1 |
| 2023-01-17 | CVE-2023-22733 | Information Exposure Through Log Files vulnerability in Shopware Shopware is an open source commerce platform based on Symfony Framework and Vue js. | 6.5 |
| 2022-09-12 | CVE-2022-36101 | Unspecified vulnerability in Shopware Shopware is an open source e-commerce software. | 5.3 |
| 2022-04-28 | CVE-2022-24879 | Cross-Site Request Forgery (CSRF) vulnerability in Shopware Shopware is an open source e-commerce software platform. | 5.0 |
| 2022-04-28 | CVE-2022-24892 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Shopware Shopware is an open source e-commerce software platform. | 6.8 |
| 2022-04-28 | CVE-2022-24873 | Cross-site Scripting vulnerability in Shopware Shopware is an open source e-commerce software platform. | 4.3 |