GMS-2021-128: Webcache Poisoning in shopware/platform and shopware/core

November 24, 2021

Webcache Poisoning via X-Forwarded-Prefix and sub-request Patches.

References

github.com/advisories/GHSA-r64m-qchj-hrjp
github.com/shopware/platform/commit/9062f15450d183f2c666664841efd4f5ef25e0f3
github.com/shopware/platform/security/advisories/GHSA-r64m-qchj-hrjp

Detect and mitigate GMS-2021-128 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →