First published: Thu Jun 24 2021(Updated: )
Shopware is an open source eCommerce platform. Versions prior to 5.6.10 suffer from an authenticated stored XSS in administration vulnerability. Users are recommend to update to the version 5.6.10. You can get the update to 5.6.10 regularly via the Auto-Updater or directly via the download overview.
Credit: security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
Shopware Shopware | >=5.0.0<5.6.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-32713 is an authenticated stored XSS vulnerability in Shopware eCommerce platform versions prior to 5.6.10.
CVE-2021-32713 has a severity rating of 4.8, which is considered medium.
To fix CVE-2021-32713, users are recommended to update to version 5.6.10 of Shopware.
Shopware is an open source eCommerce platform.
The CWE (Common Weakness Enumeration) for CVE-2021-32713 is CWE-79, which is the category for Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').