PT-2024-22134 · Symfony +2 · Symfony +2

Name of the Vulnerable Software and Affected Versions: Shopware versions 6.5.8.0 through 6.5.8.6 Description: The issue arises from the Symfony Session Handler popping the Session Cookie and assigning it to the Response. Since Shopware 6.5.8.0, 404 pages are cached to improve performance, resulti...