Lucene search
China National Vulnerability DatabaseCNVD-2022-18524HistoryMar 11, 2022 - 12:00 a.m.
Shopware Information Disclosure Vulnerability (CNVD-2022-18524)
2022-03-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
30.8%
Shopware is a suite of open source e-commerce software from the German company Shopware.Shopware suffers from an information disclosure vulnerability that stems from not properly setting sensitive HTTP headers to be uncacheable. An attacker could exploit the vulnerability to cause the header to potentially be made public via HTTP caching.
Related
cve
cve
CVE-2022-24747
2022-03-09 23:15:08
cvelist
cvelist
CVE-2022-24747 HTTP caching is marking private HTTP headers as public
2022-03-09 22:25:16
prion
prion
Design/Logic Flaw
2022-03-09 23:15:00
nvd
nvd
CVE-2022-24747
2022-03-09 23:15:08
osv
osv
CVE-2022-24747
2022-03-09 23:15:00
HTTP caching is marking private HTTP headers as public in Shopware
2022-03-10 17:55:21
github
github
HTTP caching is marking private HTTP headers as public in Shopware
2022-03-10 17:55:21
veracode
veracode
Information Disclosure
2022-03-10 07:35:18