Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

34 matches found

ATTACKERKB
ATTACKERKBadded 2026/01/14 6:31 p.m.2 views

CVE-2026-23498

Shopware is an open commerce platform. From 6.7.0.0 to before 6.7.6.1, a regression of CVE-2023-2017 leads to an array and array crafted PHP Closure not checked being against allow list for the map... override. This vulnerability is fixed in 6.7.6.1...

8.8CVSS5.5AI score0.02271EPSS
Exploits2References3Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-1819

Malware in sbrugna...

6.1CVSS6.7AI score0.00463EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-1820

Malware in sbrugna...

5.8CVSS6.3AI score0.01774EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-10291

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00796EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-1370

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00222EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-1666

Malicious code in bioql PyPI...

7.2CVSS6.2AI score0.00348EPSS
Exploits0References5
OSV
OSVadded 2022/04/22 9:4 p.m.21 views

GHSA-9WRV-G75H-8CCC Improper Access Control in Shopware

Shopware 6 is an open commerce platform based on Symfony Framework and Vue and supported by a worldwide community and more than 1.500 community extensions. Permissions set to sales channel context by admin-api are still useable within normal user session. We recommend updating to the current...

8.1CVSS8AI score0.00189EPSS
Exploits0References5
CVE
CVEadded 2022/04/20 7:15 p.m.715 views

CVE-2022-24872

Shopware CVE-2022-24872 is an improper access‑control issue in the admin-api where permissions set to the sales channel context can be used within a normal user session. Affects Shopware platform (Symfony/Vue) across affected releases; remediation is to update to version 6.4.10.1. For 6.1–6.3, se...

8.1CVSS8AI score0.00189EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2022/03/09 10:25 p.m.103 views

CVE-2022-24744

CVE-2022-24744 – Shopware Affected: Shopware (open commerce platform based on Symfony and Vue) where, in affected versions, user sessions remain active after a password reset via the recovery flow. Root cause (as described in security docs): insufficient session expiration management allowing a u...

3.5CVSS3.8AI score0.00159EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2022/03/09 10:25 p.m.111 views

CVE-2022-24745

CVE-2022-24745 affects Shopware (Shopware platform) when HTTP caching is enabled. The issue allows guest sessions to be shared between customers due to improper handling of HTTP cache headers in affected versions (Varnish setups are not affected). Root cause is related to caching behavior that ex...

6.5CVSS5.6AI score0.00186EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2018/10/17 1:31 a.m.1 views

CVE-2018-3122

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Integrations. Supported versions that are affected are 6.0, 6.0.1 and 5.3. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise...

6.8CVSS7.3AI score0.00474EPSS
Exploits0References2
NVD
NVDadded 2018/10/17 1:31 a.m.8 views

CVE-2018-3122

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Integrations. Supported versions that are affected are 6.0, 6.0.1 and 5.3. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise...

6.8CVSS6AI score0.00474EPSS
Exploits0References2
Prion
Prionadded 2018/10/17 1:31 a.m.12 views

Design/Logic Flaw

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Integrations. Supported versions that are affected are 6.0, 6.0.1 and 5.3. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise...

4.9CVSS6.5AI score0.00474EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2018/10/17 1:0 a.m.12 views

CVE-2018-3122

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Integrations. Supported versions that are affected are 6.0, 6.0.1 and 5.3. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise...

6.7AI score0.00474EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2018/10/17 1:0 a.m.5 views

CVE-2018-3122

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Integrations. Supported versions that are affected are 6.0, 6.0.1 and 5.3. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise...

6.4AI score0.00474EPSS
Exploits0References2
CVE
CVEadded 2018/10/17 1:0 a.m.35 views

CVE-2018-3122

Oracle Retail Open Commerce Platform (subcomponent: Integrations) within Oracle Retail Applications is affected on versions 6.0, 6.0.1 and 5.3. The vulnerability allows a low privileged, network-accessible attacker over HTTP to potentially perform unauthorized create, delete, or modify operations...

6.8CVSS6.5AI score0.00474EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2017/08/08 3:29 p.m.8 views

CVE-2017-10173

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Website. Supported versions that are affected are 5.0, 5.1, 5.2, 5.3, 6.0, 6.1, 15.0 and 15.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

5.8CVSS4.7AI score0.01774EPSS
Exploits0References3
Prion
Prionadded 2017/08/08 3:29 p.m.10 views

Buffer overflow

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Framework. Supported versions that are affected are 5.0, 5.1, 5.2, 5.3, 6.0, 6.1, 15.0 and 15.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

5.8CVSS5.2AI score0.00463EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2017/08/08 3:29 p.m.7 views

Buffer overflow

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Website. Supported versions that are affected are 5.0, 5.1, 5.2, 5.3, 6.0, 6.1, 15.0 and 15.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

5CVSS4.6AI score0.01774EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2017/08/08 3:0 p.m.14 views

CVE-2017-10172

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Framework. Supported versions that are affected are 5.0, 5.1, 5.2, 5.3, 6.0, 6.1, 15.0 and 15.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

5.4AI score0.00463EPSS
Exploits0References3
Rows per page
Query Builder