CVE-2021-32713: Cross-site Scripting

June 24, 2021 (updated July 1, 2021)

Shopware suffers from an authenticated stored XSS in administration vulnerability. Users are recommend to update to the You can get the update to regularly via the Auto-Updater or directly via the download overview.

References

docs.shopware.com/en/shopware-5-en/security-updates/security-update-05-2021
nvd.nist.gov/vuln/detail/CVE-2021-32713

Code Behaviors & Features

Detect and mitigate CVE-2021-32713 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →