Описание
Non-persistent XSS in the Storefront in Shopware
Impact
Non-persistent XSS in the Storefront
Patches
We recommend to update to the current version 6.3.1.1. You can get the update to 6.3.1.1 regularly via the Auto-Updater or directly via the download overview.
For older versions you can use the Security Plugin: https://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659
References
https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-09-2020
Пакеты
Наименование
shopware/platform
composer
Затронутые версииВерсия исправления
<= 6.3.1.0
6.3.1.1
Наименование
shopware/core
composer
Затронутые версииВерсия исправления
<= 6.3.1.0
6.3.1.1
Дефекты
CWE-79
Дефекты
CWE-79