Exposure of .env if project root is configured as web root in shopware/production
The .env and other sensitive files can be leaked if the project root and not /public is configured as the web root.
Advisories for Composer/Shopware/Production package
2021