0.001 Low
EPSS
Percentile
41.4%
Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404.
docs.shopware.com/en/shopware-5-en/security-updates/security-update-05-2018
github.com/shopware5/shopware/commit/73cb46727050e28a0d7c2cf8471baaa3eaf2e5e8
nvd.nist.gov/vuln/detail/CVE-2018-20713