CVE-2024-31447 | Shopware Security Plugin up to 6.5.8.7/6.6.1.0 on Symfony logout session expiration

Inserito da Angelo Barbosa | Apr 8, 2024 | CVE

A vulnerability was found in Shopware Security Plugin up to 6.5.8.7/6.6.1.0 on Symfony. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /store-api/account/logout. The manipulation leads to session expiration.

This vulnerability is handled as CVE-2024-31447. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31447 | Shopware Security Plugin up to 6.5.8.7/6.6.1.0 on Symfony logout session expiration

Post correlati

CVE-2024-4892 | BuddyPress Plugin up to 12.4.1 on WordPress cross site scripting

CVE-2023-38607 | Apple macOS Printing Privilege Escalation

CVE-2023-42800 | moonlight-stream moonlight-common-c GameStream Client buffer overflow (GHSA-4927-23jw-rq62)

CVE-2024-28430 | DedeCMS 5.7 /dede/catalog_edit.php cross-site request forgery