GHSA-f6p7-8xfw-fjqq

Опубликовано: 21 мая 2021

Источник: github

Github: Прошло ревью

Описание

Authenticated Stored XSS in Administration

Impact

Authenticated Stored XSS in Administration

Patches

We recommend updating to the current version 5.6.10. You can get the update to 5.6.10 regularly via the Auto-Updater or directly via the download overview.

For older versions you can use the Security Plugin: https://store.shopware.com/en/swag575294366635f/shopware-security-plugin.html

References

https://docs.shopware.com/en/shopware-5-en/security-updates/security-update-05-2021

Ссылки

https://github.com/shopware/shopware/security/advisories/GHSA-f6p7-8xfw-fjqq
https://docs.shopware.com/en/shopware-5-en/security-updates/security-update-05-2021

Пакеты

Наименование

shopware/shopware

composer

Затронутые версииВерсия исправления

<= 5.6.9

5.6.10

Дефекты

CWE-79

Дефекты

CWE-79