Shopware is a suite of open source e-commerce software from the German company Shopware. Shopware is vulnerable to an access control error that stems from not properly setting sensitive HTTP headers to non-cacheable, which could be exploited by an attacker to enable HTTP caching and then have customer sessions shared between customers, resulting in an inconsistent experience for guest users.
CPE | Name | Operator | Version |
---|---|---|---|
Shopware Shopware <6. | eq | 4.8.2 |