Lookup for vulnerable packages by Package URL.
| Purl | pkg:composer/shopware/shopware@6.1.0 |
|---|
| Type | composer |
|---|
| Namespace | shopware |
|---|
| Name | shopware |
|---|
| Version | 6.1.0 |
|---|
| Qualifiers |
|
|---|
| Subpath | |
|---|
| Is_vulnerable | true |
|---|
| Next_non_vulnerable_version | 6.4.10+1 |
|---|
| Latest_non_vulnerable_version | 6.7.6+1 |
|---|
| Affected_by_vulnerabilities |
| 0 |
| url |
VCID-4m2y-d8vg-b7fj |
| vulnerability_id |
VCID-4m2y-d8vg-b7fj |
| summary |
Improper Control of Generation of Code ('Code Injection')
Server-side Template Injection (SSTI) in Shopware 6 (<= v6.4.20.0, v6.5.0.0-rc1 <= v6.5.0.0-rc4), affecting both shopware/core and shopware/platform GitHub repositories, allows remote attackers with access to a Twig environment without the Sandbox extension to bypass the validation checks in `Shopware\Core\Framework\Adapter\Twig\SecurityExtension` and call any arbitrary PHP function and thus execute arbitrary code/commands via usage of fully-qualified names, supplied as array of strings, when referencing callables. Users are advised to upgrade to v6.4.20.1 to resolve this issue. This is a bypass of CVE-2023-22731. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2023-2017, GHSA-7v2v-9rm4-7m8f
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4m2y-d8vg-b7fj |
|
|
|---|
| Fixing_vulnerabilities |
|
|---|
| Risk_score | null |
|---|
| Resource_url | http://public2.vulnerablecode.io/packages/pkg:composer/shopware/shopware@6.1.0 |
|---|