shopware/platform
packagist · The Shopware e-commerce core · Repository · Package
Moderate Security Advisories for shopware/platform in packagist Clear Filters
Moderate
about 2 months ago
Shopware race condition bypasses voucher restrictions
packagist
shopware/platform
Moderate
6 months ago
Shopware Broken ACL on Document retrieval to access other customers documents
packagist
shopware/platform, shopware/core
Moderate
6 months ago
Shopware 6 allows attackers to check for registered accounts through the store-api
packagist
shopware/platform, shopware/core
Moderate
about 1 year ago
Shopware vulnerable to blind SQL-injection in DAL aggregations
packagist
shopware/core, shopware/platform
Moderate
about 1 year ago
Shopware vulnerable to Improper Access Control with ManyToMany associations in store-api
packagist
shopware/platform, shopware/core
Moderate
over 1 year ago
Shopware Improper Session Handling in store-api account logout
packagist
shopware/platform, shopware/core
Moderate
over 1 year ago
Broken Access Control order API in Shopware
packagist
shopware/platform, shopware/core
Moderate
over 2 years ago
Shopware has Improper Input Validation issue in newsletter subscription
packagist
shopware/core, shopware/platform
Moderate
over 2 years ago
Shopware vulnerable to Improper Input Validation of Clearance sale in cart
packagist
shopware/core, shopware/platform
Moderate
over 3 years ago
HTTP caching is marking private HTTP headers as public in Shopware
packagist
shopware/storefront, shopware/core, shopware/platform
Moderate
over 3 years ago
HTML injection possibility in voucher code form in Shopware
packagist
shopware/storefront, shopware/core, shopware/platform
Moderate
over 3 years ago
Shopware guest session is shared between customers
packagist
shopware/storefront, shopware/platform
Moderate
about 4 years ago
Exposure of Sensitive Information to an Unauthorized Actor
packagist
shopware/platform
Moderate
about 4 years ago
Insecure direct object reference of log files of the Import/Export feature
packagist
shopware/core, shopware/platform
Moderate
about 4 years ago
Manipulation of product reviews via API
packagist
shopware/core, shopware/platform
Moderate
over 4 years ago
non-admin users can create integration role with administrator role
packagist
shopware/core, shopware/platform
Moderate
over 4 years ago
Internal hidden fields are visible on to many associations in admin api
packagist
shopware/core, shopware/platform
Moderate
over 4 years ago
Canceling of orders not related to the logged-in user
packagist
shopware/core, shopware/platform
Moderate
almost 5 years ago
Authenticated XML External Entity Processing
packagist
shopware/core, shopware/platform