{"url":"http://public2.vulnerablecode.io/api/packages/64757?format=json","purl":"pkg:composer/shopware/shopware@6.4.20%2B0","type":"composer","namespace":"shopware","name":"shopware","version":"6.4.20+0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"6.6.10+10","latest_non_vulnerable_version":"6.7.6+1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/44969?format=json","vulnerability_id":"VCID-4m2y-d8vg-b7fj","summary":"Improper Control of Generation of Code ('Code Injection')\nServer-side Template Injection (SSTI) in Shopware 6 (<= v6.4.20.0, v6.5.0.0-rc1 <= v6.5.0.0-rc4), affecting both shopware/core and shopware/platform GitHub repositories, allows remote attackers with access to a Twig environment without the Sandbox extension to bypass the validation checks in `Shopware\\Core\\Framework\\Adapter\\Twig\\SecurityExtension` and call any arbitrary PHP function and thus execute arbitrary code/commands via usage of fully-qualified names, supplied as array of strings, when referencing callables. Users are advised to upgrade to v6.4.20.1 to resolve this issue. This is a bypass of CVE-2023-22731.","references":[{"reference_url":"https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-04-2023","reference_id":"","reference_type":"","scores":[],"url":"https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-04-2023"},{"reference_url":"https://github.com/shopware/platform","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/shopware/platform"},{"reference_url":"https://github.com/shopware/platform/releases/tag/v6.4.20.1","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/shopware/platform/releases/tag/v6.4.20.1"},{"reference_url":"https://starlabs.sg/advisories/23/23-2017","reference_id":"","reference_type":"","scores":[],"url":"https://starlabs.sg/advisories/23/23-2017"},{"reference_url":"https://starlabs.sg/advisories/23/23-2017/","reference_id":"","reference_type":"","scores":[],"url":"https://starlabs.sg/advisories/23/23-2017/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2017","reference_id":"CVE-2023-2017","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2017"},{"reference_url":"https://github.com/advisories/GHSA-7v2v-9rm4-7m8f","reference_id":"GHSA-7v2v-9rm4-7m8f","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-7v2v-9rm4-7m8f"},{"reference_url":"https://github.com/shopware/platform/security/advisories/GHSA-7v2v-9rm4-7m8f","reference_id":"GHSA-7v2v-9rm4-7m8f","reference_type":"","scores":[],"url":"https://github.com/shopware/platform/security/advisories/GHSA-7v2v-9rm4-7m8f"},{"reference_url":"https://github.com/shopware/shopware/security/advisories/GHSA-7v2v-9rm4-7m8f","reference_id":"GHSA-7v2v-9rm4-7m8f","reference_type":"","scores":[],"url":"https://github.com/shopware/shopware/security/advisories/GHSA-7v2v-9rm4-7m8f"}],"fixed_packages":[],"aliases":["CVE-2023-2017","GHSA-7v2v-9rm4-7m8f"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4m2y-d8vg-b7fj"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/shopware/shopware@6.4.20%252B0"}