3 matches found
Cross-Site Scripting (XSS)
shopware/shopware is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute arbtirary Javascript in a user's browser via the videoID parameter of a youtube element in shopping worlds...
GHSA-28FW-88HQ-6JMM Persistent XSS in shopping worlds
Impact Persistent XSS in shopping worlds Patches We recommend updating to the current version 5.6.9. You can get the update to 5.6.9 regularly via the Auto-Updater or directly via the download overview. For older versions you can use the Security Plugin:...
Persistent XSS in shopping worlds
Impact Persistent XSS in shopping worlds Patches We recommend updating to the current version 5.6.9. You can get the update to 5.6.9 regularly via the Auto-Updater or directly via the download overview. For older versions you can use the Security Plugin:...