Lucene search
Veracode Vulnerability DatabaseVERACODE:35185HistoryApr 21, 2022 - 2:52 a.m.
Server-side Request Forgery (SSRF)
2022-04-2102:52:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.001 Low
EPSS
Percentile
42.3%
shopware/platform is vulnerable to server-side request forgery. An attacker can read or update internal resources by sending malicious requests on behalf of the server into the admin SDK functionality.
| CPE | Name | Operator | Version |
|---|---|---|---|
| shopware/platform | le | 6.4.10.0 | |
| shopware/core | le | 6.4.10.0 | |
| shopware/platform | le | 6.4.10.0 | |
| shopware/core | le | 6.4.10.0 |
References
Related
cve
cve
CVE-2022-24871
2022-04-20 19:15:08
cvelist
cvelist
CVE-2022-24871 Server-Side Request Forgery (SSRF) in Shopware
2022-04-20 19:05:11
prion
prion
Design/Logic Flaw
2022-04-20 19:15:00
github
github
Server-Side Request Forgery (SSRF) in Shopware
2022-04-22 21:04:07
osv
osv
CVE-2022-24871
2022-04-20 19:15:08
Server-Side Request Forgery (SSRF) in Shopware
2022-04-22 21:04:07
nvd
nvd
CVE-2022-24871
2022-04-20 19:15:08