Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-2156

Malware in sbrugna...

5.7CVSS5.5AI score0.00512EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.7 views

EUVD-2022-1610

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00285EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.7 views

EUVD-2022-1799

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00135EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-10546

Malicious code in bioql PyPI...

6.9CVSS6.3AI score0.00441EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-6722

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00465EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-0658

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00303EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-6240

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00687EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/05/22 11:9 p.m.6 views

CVE-2022-36102

Shopware is an open source e-commerce software. In affected versions if backend admin controllers are called with a certain notation, the ACL could be bypassed. Users could execute actions, which they are normally not able to do. Users are advised to update to the current version 5.7.15. Users ca...

7.2CVSS6.9AI score0.00612EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/04/09 3:37 p.m.9 views

CVE-2025-32378 Shopware's default newsletter opt-in settings allow for mass sign-up abuse

Shopware is an open source e-commerce software platform. Prior to 6.6.10.3 or 6.5.8.17, the default settings for double-opt-in allow for mass unsolicited newsletter sign-ups without confirmation. Default settings are Newsletter: Double Opt-in set to active, Newsletter: Double opt-in for registere...

6.9CVSS6.8AI score0.00441EPSS
Exploits0References1
OSV
OSVadded 2023/06/27 4:29 p.m.15 views

CVE-2023-34099 Improper mail validation in Shopware

Shopware is an open source e-commerce software. The mail validation in the registration process had some flaws, so it was possible to construct different mail addresses, that in the end result in the same address, which is shared by multiple accounts. This issue has been addressed in version 5.7....

5.3CVSS5.5AI score0.0014EPSS
Exploits0References6
Prion
Prionadded 2022/08/01 5:15 p.m.10 views

Cross site scripting

Shopware is an open source e-commerce software. In versions from 5.7.0 a persistent cross site scripting XSS vulnerability exists in the customer module. Users are recommend to update to the current version 5.7.14. You can get the update to 5.7.14 regularly via the Auto-Updater or directly via th...

4.9CVSS5.2AI score0.00687EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2022/06/27 8:15 p.m.6 views

CVE-2022-31057

Shopware is an open source e-commerce software made in Germany. Versions of Shopware 5 prior to version 5.7.12 are subject to an authenticated Stored XSS in Administration. Users are advised to upgrade. There are no known workarounds for this issue...

6.5CVSS0.00409EPSS
Exploits0References4
Prion
Prionadded 2022/06/27 8:15 p.m.10 views

Cross site scripting

Shopware is an open source e-commerce software made in Germany. Versions of Shopware 5 prior to version 5.7.12 are subject to an authenticated Stored XSS in Administration. Users are advised to upgrade. There are no known workarounds for this issue...

3.5CVSS5.1AI score0.00409EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder