Описание
Shopware race condition bypasses voucher restrictions
A race condition vulnerability has been identified in Shopware's voucher system of Shopware v6.6.10.4 that allows attackers to bypass intended voucher restrictions and exceed usage limitations.
Пакеты
Наименование
shopware/platform
composer
Затронутые версииВерсия исправления
<= 6.6.10.4
Отсутствует
Связанные уязвимости
CVSS3: 8.1
nvd
6 месяцев назад
A race condition vulnerability has been identified in Shopware's voucher system of Shopware v6.6.10.4 that allows attackers to bypass intended voucher restrictions and exceed usage limitations.