Lucene search
Veracode Vulnerability DatabaseVERACODE:39051HistoryJan 30, 2023 - 9:43 a.m.
Improper Input Validation
2023-01-3009:43:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2
shopware
vulnerability
input validation
clearance sale
cart inputs
attacker bypass
0.001 Low
EPSS
Percentile
28.7%
Shopware is vulnerable to Improper Input Validation. The vulnerability exist because the clearance sale in cart inputs are not properly validated which allows an attacker to bypass quantity validation when entering multiple of the same item in a cart.
| CPE | Name | Operator | Version |
|---|---|---|---|
| shopware/core | le | 6.4.18.0 | |
| shopware/platform | le | 6.4.18.0 | |
| shopware/core | le | 6.4.18.0 | |
| shopware/platform | le | 6.4.18.0 |
Related
cve
cve
CVE-2023-22730
2023-01-17 22:15:10
github
github
Shopware vulnerable to Improper Input Validation of Clearance sale in cart
2023-01-17 23:57:23
prion
prion
Design/Logic Flaw
2023-01-17 22:15:00
nvd
nvd
CVE-2023-22730
2023-01-17 22:15:10
osv
osv
CVE-2023-22730
2023-01-17 22:15:10
Shopware vulnerable to Improper Input Validation of Clearance sale in cart
2023-01-17 23:57:23
cvelist
cvelist
CVE-2023-22730 Improper Input Validation of Clearance sale in cart
2023-01-17 21:27:50