0.001 Low
EPSS
Percentile
26.7%
shopware/core is vulnerable to privilege escalation. The The vulnerability exists due to lack of validate API library which allows to an attacker to modify customers and create orders without permission.
github.com/shopware/administration/commit/e14a0d6e515d75b363ac8afe9537078cee9543fa
github.com/shopware/core/commit/329e4d7e028dd8081496cf8bd3acc822000b0ec0
github.com/shopware/platform/commit/8d58db77fcd7643794abc359bd85fae938808598
github.com/shopware/platform/security/advisories/GHSA-83vp-6jqg-6cmr