2 matches found
Shopware < 5.5.8 - Cross-Site Scripting
Shopware before 5.5.8 contains a reflected cross-site scripting XSS caused by unsanitized query string parameters in the backend/Login or backend/Login/load/ URI, letting attackers execute arbitrary scripts in the context of the victim's browser, exploit requires sending crafted URL to the victim...
CVE-2019-12935
creationtimestamp| type| source ---|---|--- 2026-01-15 07:49:49+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2019/CVE-2019-12935.yaml 2026-01-15 21:03:00+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mciiae22bv22...