3 matches found
CVE-2022-31057 Authenticated Stored XSS in Shopware Administration
Shopware is an open source e-commerce software made in Germany. Versions of Shopware 5 prior to version 5.7.12 are subject to an authenticated Stored XSS in Administration. Users are advised to upgrade. There are no known workarounds for this issue...
CVE-2022-31057 Authenticated Stored XSS in Shopware Administration
Shopware is an open source e-commerce software made in Germany. Versions of Shopware 5 prior to version 5.7.12 are subject to an authenticated Stored XSS in Administration. Users are advised to upgrade. There are no known workarounds for this issue...
CVE-2022-31057
CVE-2022-31057 affects Shopware 5.x prior to 5.7.12, with an authenticated Stored XSS in Administration. The vulnerability originates from insufficient input/output filtering in the Admin context, enabling stored script execution. Remediation per multiple sources is to upgrade to Shopware 5.7.12 ...