Vulnerabilities > Shopware > Shopware > 4.3.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-16 | CVE-2024-22406 | SQL Injection vulnerability in Shopware Shopware is an open headless commerce platform. | 9.8 |
| 2024-01-16 | CVE-2024-22407 | Improper Access Control vulnerability in Shopware Shopware is an open headless commerce platform. | 6.5 |
| 2024-01-16 | CVE-2024-22408 | Server-Side Request Forgery (SSRF) vulnerability in Shopware Shopware is an open headless commerce platform. | 8.1 |
| 2023-01-17 | CVE-2023-22730 | Improper Input Validation vulnerability in Shopware Shopware is an open source commerce platform based on Symfony Framework and Vue js. | 7.5 |
| 2023-01-17 | CVE-2023-22731 | Code Injection vulnerability in Shopware Shopware is an open source commerce platform based on Symfony Framework and Vue js. | 8.8 |
| 2023-01-17 | CVE-2023-22732 | Insufficient Session Expiration vulnerability in Shopware Shopware is an open source commerce platform based on Symfony Framework and Vue js. | 9.8 |
| 2023-01-17 | CVE-2023-22733 | Information Exposure Through Log Files vulnerability in Shopware Shopware is an open source commerce platform based on Symfony Framework and Vue js. | 6.5 |
| 2023-01-17 | CVE-2023-22734 | Improper Input Validation vulnerability in Shopware Shopware is an open source commerce platform based on Symfony Framework and Vue js. | 7.5 |
| 2022-04-20 | CVE-2022-24872 | Incorrect Permission Assignment for Critical Resource vulnerability in Shopware Shopware is an open commerce platform based on Symfony Framework and Vue. | 5.5 |
| 2022-04-20 | CVE-2022-24871 | Server-Side Request Forgery (SSRF) vulnerability in Shopware Shopware is an open commerce platform based on Symfony Framework and Vue. | 5.5 |