Vulnerability Database

317,182

Total vulnerabilities in the database

Vulnerabilities for products matching "shopware"

Found 1 matching product.

You can search for specific versions with /product/shopware/1.2.3

shopware / shopware

72 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
Shopware: Reflective Cross Site-Scripting (XSS) in CMS components	High		September 10, 2025 9/10/25	>= 6.7.0.0 < 6.7.2.1
CVE-2025-7954	Medium		August 6, 2025 8/6/25	>= 6.6.0.0 < 6.7.2.0
CVE-2025-51541	Medium		August 5, 2025 8/5/25	>= 6.1.0 < 6.2.3
CVE-2025-32378	Low		April 9, 2025 4/9/25	< 6.5.8.17 >= 6.6.0.0 < 6.6.10.3 == 6.7.0.0-rc1
CVE-2025-27892	High		April 8, 2025 4/8/25	< 6.5.8.17 >= 6.6.0.0 < 6.6.10.3 == 6.7.0.0-rc1
CVE-2025-30151	High		April 8, 2025 4/8/25	< 6.5.8.17 >= 6.6.0.0 < 6.6.10.3 == 6.7.0.0-rc1
CVE-2025-30150	Medium		April 8, 2025 4/8/25	< 6.5.8.18 >= 6.6.0.0 < 6.6.10.3 == 6.7.0.0-rc1
CVE-2024-42357	High		August 8, 2024 8/8/24	>= 6.6.0.0 < 6.6.5.1 < 6.5.8.13
CVE-2024-42356	High		August 8, 2024 8/8/24	>= 6.6.0.0 < 6.6.5.1 < 6.5.8.13
CVE-2024-42355	High		August 8, 2024 8/8/24	>= 6.6.0.0 < 6.6.5.1 < 6.5.8.13
CVE-2024-42354	Medium		August 8, 2024 8/8/24	>= 6.6.0.0 < 6.6.5.1 < 6.5.8.13
Shopware Remote Code Execution Vulnerability	Critical		May 21, 2024 5/21/24	>= 4.2.0 < 5.2.25
Shopware Remote Code Execution Vulnerability	Critical		May 21, 2024 5/21/24	== 5.2.15 >= 5.2.15 < 5.2.16
Shopware Non-Persistent XSS in the Frontend	Medium		May 21, 2024 5/21/24	>= 5.2.0 < 5.3.7
Shopware Remote Code Execution Vulnerability	Critical		May 21, 2024 5/21/24	>= 4.0.0 < 5.2.15 < 1.0.8
CVE-2024-31447	Medium		April 8, 2024 4/8/24	>= 6.3.5.0 < 6.5.8.8 >= 6.6.0.0 < 6.6.1.0
CVE-2024-27917	High		March 6, 2024 3/6/24	>= 6.5.8.0 < 6.5.8.7
CVE-2024-22408	High		January 16, 2024 1/16/24	< 6.5.7.4
CVE-2024-22407	Low		January 16, 2024 1/16/24	< 6.5.7.4
CVE-2024-22406	Critical		January 16, 2024 1/16/24	< 6.5.7.4
CVE-2023-34099	Medium		June 27, 2023 6/27/23	>= 5.1.4 < 5.7.18 >= 5.1.4 <= 5.7.17
CVE-2023-34098	Medium		June 27, 2023 6/27/23	>= 5.6.0 < 5.7.18
CVE-2022-48150	Medium		April 21, 2023 4/21/23	<= 5.5.10 == 5.5.10
CVE-2023-2017	High		April 17, 2023 4/17/23	== 6.5.0.0-rc2 == 6.5.0.0-rc3 == 6.5.0.0-rc1 >= 6.1.0 <= 6.4.20.0
CVE-2023-22732	Low		January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22733	Low		January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22734	Low		January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22730	Medium		January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22731	Critical		January 17, 2023 1/17/23	< 6.4.18.1
CVE-2022-36101	Medium		September 12, 2022 9/12/22	>= 5.0.0 < 5.7.15 < 5.7.15
CVE-2022-36102	Medium		September 12, 2022 9/12/22	>= 5.0.0 < 5.7.15 < 5.7.15
CVE-2022-31148	Medium		August 1, 2022 8/1/22	>= 5.7.0 < 5.7.14
CVE-2022-31057	Medium		June 27, 2022 6/27/22	>= 5.0.0 < 5.7.12 < 5.7.12
CVE-2022-24892	Medium		April 28, 2022 4/28/22	>= 5.0.4 < 5.7.9
CVE-2022-24879	High		April 28, 2022 4/28/22	>= 5.2.0 < 5.7.9
CVE-2022-24873	Medium		April 28, 2022 4/28/22	>= 5.0.0 < 5.7.9 < 5.7.9
CVE-2022-24872	High		April 20, 2022 4/20/22	< 6.4.10.1
CVE-2022-24871	High		April 20, 2022 4/20/22	< 6.4.10.1
CVE-2022-24745	Low		March 9, 2022 3/9/22	< 6.4.8.2
CVE-2022-24746	Medium		March 9, 2022 3/9/22	< 6.4.8.1
CVE-2022-24747	Medium		March 9, 2022 3/9/22	< 6.4.8.2
CVE-2022-24748	Medium		March 9, 2022 3/9/22	< 6.4.8.2
CVE-2022-24744	Low		March 9, 2022 3/9/22	< 6.4.8.1
CVE-2022-21651	Medium		January 5, 2022 1/5/22	>= 5.0.0 < 5.7.7
CVE-2022-21652	Low		January 5, 2022 1/5/22	>= 5.7.3 < 5.7.7
CVE-2021-41188	Medium		October 26, 2021 10/26/21	< 5.7.6
CVE-2021-37711	High		August 16, 2021 8/16/21	>= 6.1.0 < 6.4.3.1
CVE-2021-37710	High		August 16, 2021 8/16/21	< 6.4.3.1
CVE-2021-37709	Medium		August 16, 2021 8/16/21	< 6.4.3.1
CVE-2021-37708	High		August 16, 2021 8/16/21	>= 6.1.0 < 6.4.3.1

‹
›

1
2
›

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime