CVE-2026-32142

Shopware is an open commerce platform. /api/info/config route exposes information about licenses. This vulnerability is fixed in 7.8.1 and 6.10.15...

CVE-2026-32142 shopware/commercial: `/api/_info/config` route exposes information about licenses

Shopware is an open commerce platform. /api/info/config route exposes information about licenses. This vulnerability is fixed in 7.8.1 and 6.10.15...

EUVD-2026-11663

Shopware is an open commerce platform. /api/info/config route exposes information about licenses. This vulnerability is fixed in 7.8.1 and 6.10.15...

CVE-2026-32142

CVE-2026-32142 affects Shopware Open Commerce Platform. The vulnerable component is the endpoint at /api/_info/config, which exposes information about licenses, creating an information-disclosure risk. The issue is fixed in versions 7.8.1 and 6.10.15 . The CVSS v3.1 score is 5.3 (Medium) with the...

CVE-2026-32100

Shopware is an open commerce platform. /api/info/config route exposes information about active security fixes. This vulnerability is fixed in 2.0.16, 3.0.12, and 4.0.7...

PT-2026-25031

Shopware is an open commerce platform. /api/ info/config route exposes information about active security fixes. This vulnerability is fixed in 2.0.16, 3.0.12, and 4.0.7...

Shopware 信息泄露漏洞

Shopware is a set of open-source e-commerce software developed by the German company Shopware GmbH. Shopware has a vulnerability related to information leakage, which stems from the exposure of license information through the /api/info/config route...