Shopware/storefront
This hub aggregates every CVE we track for Shopware/storefront, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM3HIGH2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting Shopware/storefront.
- CVE-2025-67648Shopware's inproper input validation can lead to Reflected XSS through Storefront Login Page7.1
- CVE-2024-27917Shopware's session is persistent in Cache for 404 pages7.5
- CVE-2022-24745Guest session is shared between customers in shopware4.8
- CVE-2022-24746HTML injection possibility in voucher code form6.1
- CVE-2022-24747HTTP caching is marking private HTTP headers as public6.3
Product normalization is registry-driven with AI assist and human review. How it works