{"url":"http://public2.vulnerablecode.io/api/packages/72834?format=json","purl":"pkg:composer/shopware/shopware@6.7.0%2B0","type":"composer","namespace":"shopware","name":"shopware","version":"6.7.0+0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"6.7.5+1","latest_non_vulnerable_version":"6.7.6+1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49712?format=json","vulnerability_id":"VCID-7v27-95mx-6ud8","summary":"Shopware Has Improper Control of Generation of Code in Twig rendered views\nWe fixed with [CVE-2023-2017](https://github.com/advisories/GHSA-7v2v-9rm4-7m8f) Twig filters to only be executed with allowed functions. However there was a regression that lead to an array and array crafted PHP Closure not checked being against allow list for the map(...) override","references":[{"reference_url":"https://github.com/shopware/shopware","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/shopware/shopware"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23498","reference_id":"CVE-2026-23498","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23498"},{"reference_url":"https://github.com/advisories/GHSA-7cw6-7h3h-v8pf","reference_id":"GHSA-7cw6-7h3h-v8pf","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-7cw6-7h3h-v8pf"},{"reference_url":"https://github.com/shopware/shopware/security/advisories/GHSA-7cw6-7h3h-v8pf","reference_id":"GHSA-7cw6-7h3h-v8pf","reference_type":"","scores":[],"url":"https://github.com/shopware/shopware/security/advisories/GHSA-7cw6-7h3h-v8pf"},{"reference_url":"https://github.com/advisories/GHSA-7v2v-9rm4-7m8f","reference_id":"GHSA-7v2v-9rm4-7m8f","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-7v2v-9rm4-7m8f"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/73413?format=json","purl":"pkg:composer/shopware/shopware@6.7.6%2B1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/shopware/shopware@6.7.6%252B1"}],"aliases":["CVE-2026-23498","GHSA-7cw6-7h3h-v8pf"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7v27-95mx-6ud8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/49371?format=json","vulnerability_id":"VCID-zdbk-26u3-13bs","summary":"Shopware Storefront Reflected XSS in Storefront Login Page\nA request parameter from the URL of the login page is directly rendered within the Twig template of the Storefront login page without further processing or input validation. This allows direct code injection into the template via the URL parameter. An attacker can create malicious links that could be used in a phishing attack. The parameter `waitTime` lacks proper input validation.\n\nThe attack can be tested with the following URL pattern:\n\n```\n/account/login?loginError=1&waitTime=<a%20href%3D\"https%3A%2F%2Fde.wikipedia.org%2Fwiki%2FPhishing\">Here<%2Fa>\n```\n\nThe same applies to the `errorSnippet` parameter:","references":[{"reference_url":"https://github.com/shopware/shopware","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/shopware/shopware"},{"reference_url":"https://github.com/shopware/shopware/commit/c9242c02c84595d9fa3e2adf6a264bc90a657b58","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/shopware/shopware/commit/c9242c02c84595d9fa3e2adf6a264bc90a657b58"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-67648","reference_id":"CVE-2025-67648","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-67648"},{"reference_url":"https://github.com/advisories/GHSA-6w82-v552-wjw2","reference_id":"GHSA-6w82-v552-wjw2","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-6w82-v552-wjw2"},{"reference_url":"https://github.com/shopware/shopware/security/advisories/GHSA-6w82-v552-wjw2","reference_id":"GHSA-6w82-v552-wjw2","reference_type":"","scores":[],"url":"https://github.com/shopware/shopware/security/advisories/GHSA-6w82-v552-wjw2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/72836?format=json","purl":"pkg:composer/shopware/shopware@6.7.5%2B1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/shopware/shopware@6.7.5%252B1"}],"aliases":["CVE-2025-67648","GHSA-6w82-v552-wjw2"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zdbk-26u3-13bs"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/shopware/shopware@6.7.0%252B0"}