Search for vulnerabilities
| Vulnerability ID | VCID-vzee-b74h-jqez |
| Aliases |
GHSA-6gv9-7q4g-pmvm
GMS-2020-600 |
| Summary | Persistent XSS in customer module in Shopware ### Impact Persistent XSS in customer module ### Patches We recommend updating to the current version 5.6.9. You can get the update to 5.6.9 regularly via the Auto-Updater or directly via the download overview. For older versions you can use the Security Plugin: https://store.shopware.com/en/swag575294366635f/shopware-security-plugin.html ### References https://docs.shopware.com/en/shopware-5-en/security-updates/security-update-11-2020 |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 2.7 |
| Risk | 1.4 |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| generic_textual | LOW | https://docs.shopware.com/en/shopware-5-en/security-updates/security-update-11-2020 |
| cvssv3.1_qr | LOW | https://github.com/advisories/GHSA-6gv9-7q4g-pmvm |
| cvssv3.1_qr | LOW | https://github.com/shopware/shopware/security/advisories/GHSA-6gv9-7q4g-pmvm |
| generic_textual | LOW | https://github.com/shopware/shopware/security/advisories/GHSA-6gv9-7q4g-pmvm |
| Reference id | Reference type | URL |
|---|---|---|
| https://docs.shopware.com/en/shopware-5-en/security-updates/security-update-11-2020 | ||
| https://github.com/shopware/shopware/security/advisories/GHSA-6gv9-7q4g-pmvm | ||
| GHSA-6gv9-7q4g-pmvm | https://github.com/advisories/GHSA-6gv9-7q4g-pmvm |
No EPSS data available for this vulnerability.
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-05-31T11:10:21.496162+00:00 | GithubOSV Importer | Import | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/11/GHSA-6gv9-7q4g-pmvm/GHSA-6gv9-7q4g-pmvm.json | 38.6.0 |