2 matches found
CVE-2023-34098
CVE-2023-34098 affects Shopware (open source e-commerce software). Amisconfigured .htaccess allows reading the Javascript configuration file in production environments (themes/package-lock.json), enabling an attacker to determine the specific Shopware version deployed. This is an information‑disc...
CVE-2023-34098 Dependency configuration exposed in Shopware
Shopware is an open source e-commerce software. Due to an incorrect configuration in the .htaccess file, the configuration file of the Javascript could be read in production environments themes/package-lock.json. With this information, the specific Shopware version in a deployment might be...