5 matches found
CVE-2023-22733
creationtimestamp| type| source ---|---|--- 2023-01-19 08:01:45+00:00| seen| https://t.me/cibsecurity/56635...
CVE-2023-22733
Shopware is an open source commerce platform based on Symfony Framework and Vue js. In affected versions the log module would write out all kind of sent mails. An attacker with access to either the local system logs or a centralized logging store may have access to other users accounts. This issu...
CVE-2023-22733 Improper Output Neutralization in Log Module in shopware
Shopware is an open source commerce platform based on Symfony Framework and Vue js. In affected versions the log module would write out all kind of sent mails. An attacker with access to either the local system logs or a centralized logging store may have access to other users accounts. This issu...
CVE-2023-22733 Improper Output Neutralization in Log Module in shopware
Shopware is an open source commerce platform based on Symfony Framework and Vue js. In affected versions the log module would write out all kind of sent mails. An attacker with access to either the local system logs or a centralized logging store may have access to other users accounts. This issu...
CVE-2023-22733
CVE-2023-22733 affects Shopware’s log module in affected Shopware versions (notably 6.1, 6.2, 6.3, and up to 6.4.18.1). The vulnerability is an information disclosure risk where the log output may contain sensitive data, including password reset emails, if an attacker can access local system logs...