CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Github Security Blog•added 2022/05/14 1:39 a.m.•17 views

Shopware SQL Injection

Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404...

8.8CVSS7.8AI score0.0062EPSS

Exploits0References4Affected Software1

OSV•added 2022/05/14 1:39 a.m.•14 views

GHSA-42GV-77F4-R3J9 Shopware SQL Injection

Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404...

8.8CVSS8.9AI score0.0062EPSS

Exploits0References3

NVD•added 2019/01/15 4:29 p.m.•11 views

CVE-2018-20713

Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404...

8.8CVSS8.9AI score0.0062EPSS

Exploits0References1

Prion•added 2019/01/15 4:29 p.m.•15 views

Sql injection

Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404...

6.5CVSS8.9AI score0.0062EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/01/15 4:0 p.m.•13 views

CVE-2018-20713

Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404...

8.9AI score0.0062EPSS

Exploits0References1

CVE•added 2019/01/15 4:0 p.m.•44 views

CVE-2018-20713

CVE-2018-20713 concerns Shopware prior to version 5.4.3, which is vulnerable to a SQL injection by remote authenticated users (SW-21404). The root cause, as detailed by multiple sources, is insufficient input validation in critical parameters (e.g., newName , defaultValue , table , name ), allowi...

8.8CVSS8.8AI score0.0062EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by