shopware/shopware vulnerabilities

Shopware is the next generation of open source e-commerce software made in Germany

Latest version: v5.7.0-RC1

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the shopware/shopware package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • M
Cross-site Scripting (XSS)
<5.6.9 Not available 15 Nov, 2020
  • M
Cross-site Scripting (XSS)
>=5.2.5, <5.3.1 Not available 30 Jul, 2020
  • H
Cross-site Scripting (XSS)
<5.5.8 Not available 24 Jun, 2019
  • H
SQL Injection
>=4.2.0, <5.4.3 Not available 17 Feb, 2019
  • M
Cross-site Scripting (XSS)
>=5.2.0, <5.3.7 Not available 23 Jan, 2018
  • H
Arbitrary Code Execution
<5.2.25 Not available 22 Jun, 2017
  • H
Arbitrary Code Execution
>=4.0.0, <5.2.15 Not available 19 Jan, 2017
  • H
Arbitrary Code Execution
<4.3.7,>=5.0.0, <5.1.5 Not available 08 Apr, 2016