Lucene search
PRIOn knowledge basePRION:CVE-2023-22730HistoryJan 17, 2023 - 10:15 p.m.
Design/Logic Flaw
2023-01-1722:15:00
PRIOn knowledge base
www.prio-n.com
4
shopware
commerce platform
symfony framework
vue js
cart validators
quantity limits
security fix
version 6.4.18.1
plugin
nvd
0.001 Low
EPSS
Percentile
28.7%
Shopware is an open source commerce platform based on Symfony Framework and Vue js. In affected versions It was possible to put the same line item multiple times in the cart using the AP. The Cart Validators checked the line item’s individuality and the user was able to bypass quantity limits in sales. This problem has been fixed with version 6.4.18.1. Users on major versions 6.1, 6.2, and 6.3 may also obtain this fix via a plugin.
Related
veracode
veracode
Improper Input Validation
2023-01-30 09:43:45
cve
cve
CVE-2023-22730
2023-01-17 22:15:10
github
github
Shopware vulnerable to Improper Input Validation of Clearance sale in cart
2023-01-17 23:57:23
nvd
nvd
CVE-2023-22730
2023-01-17 22:15:10
osv
osv
Shopware vulnerable to Improper Input Validation of Clearance sale in cart
2023-01-17 23:57:23
CVE-2023-22730
2023-01-17 22:15:10
cvelist
cvelist
CVE-2023-22730 Improper Input Validation of Clearance sale in cart
2023-01-17 21:27:50