CVE-2022-24871 – Server-Side Request Forgery (SSRF) in Shopware
https://notcve.org/view.php?id=CVE-2022-24871
Shopware is an open commerce platform based on Symfony Framework and Vue. In affected versions an attacker can abuse the Admin SDK functionality on the server to read or update internal resources. Users are advised to update to the current version 6.4.10.1. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. There are no known workarounds for this issue. • https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-04-2022 https://github.com/shopware/platform/commit/083765e2d64a00315050c4891800c9e98ba0c77c https://github.com/shopware/platform/security/advisories/GHSA-7gm7-8q8v-9gf2 • CWE-918: Server-Side Request Forgery (SSRF) •
CVE-2022-24744 – Insufficient Session Expiration in shopware
https://notcve.org/view.php?id=CVE-2022-24744
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. In affected versions user sessions are not logged out if the password is reset via password recovery. This issue has been resolved in version 6.4.8.1. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. Shopware es una plataforma de comercio abierto basada en el Framework php Symfony y el framework javascript Vue. • https://github.com/shopware/platform/security/advisories/GHSA-w267-m9c4-8555 • CWE-613: Insufficient Session Expiration •
CVE-2022-24745 – Guest session is shared between customers in shopware
https://notcve.org/view.php?id=CVE-2022-24745
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. In affected versions guest sessions are shared between customers when HTTP cache is enabled. This can lead to inconsistent experiences for guest users. Setups with Varnish are not affected by this issue. This issue has been resolved in version 6.4.8.2. • https://github.com/shopware/platform/security/advisories/GHSA-jp6h-mxhx-pgqh • CWE-384: Session Fixation •
CVE-2022-24746 – HTML injection possibility in voucher code form
https://notcve.org/view.php?id=CVE-2022-24746
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. In affected versions it is possible to inject code via the voucher code form. This issue has been patched in version 6.4.8.1. There are no known workarounds for this issue. Shopware es una plataforma de comercio abierta basada en el framework php Symfony y el framework javascript Vue. • https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-02-2022 https://github.com/shopware/platform/commit/651598a61073cbe59368e311817bdc6e7fb349c6 https://github.com/shopware/platform/security/advisories/GHSA-952p-fqcp-g8pc • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2022-24747 – HTTP caching is marking private HTTP headers as public
https://notcve.org/view.php?id=CVE-2022-24747
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. Affected versions of shopware do no properly set sensitive HTTP headers to be non-cacheable. If there is an HTTP cache between the server and client then headers may be exposed via HTTP caches. This issue has been resolved in version 6.4.8.2. There are no known workarounds. • https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-03-2022 https://github.com/shopware/platform/commit/d51863148f32306aafdbc7f9f48887c69fce206f https://github.com/shopware/platform/security/advisories/GHSA-6wrh-279j-6hvw • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •