Описание
Shopware is an open commerce platform. From 6.7.0.0 to before 6.7.6.1, a regression of CVE-2023-2017 leads to an array and array crafted PHP Closure not checked being against allow list for the map(...) override. This vulnerability is fixed in 6.7.6.1.
EPSS
Процентиль: 13%
0.00044
Низкий
7.2 High
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 7.2
github
5 дней назад
Shopware Has Improper Control of Generation of Code in Twig rendered views
EPSS
Процентиль: 13%
0.00044
Низкий
7.2 High
CVSS3
Дефекты
CWE-94