Shopware is a suite of open source e-commerce software from the German company Shopware.A trust management issue vulnerability exists in versions of Shopware prior to 5.7.7, which stems from the fact that shopware does not invalidate a user’s session when a password is changed. An attacker could use this vulnerability to gain access to a valid user session.
CPE | Name | Operator | Version |
---|---|---|---|
Shopware Shopware >=5.7.3, | lt | 5.7.7 |