Moderate severityNVD Advisory· Published Jun 24, 2021· Updated Aug 3, 2024
Authenticated Stored XSS
CVE-2021-32713
Description
Shopware is an open source eCommerce platform. Versions prior to 5.6.10 suffer from an authenticated stored XSS in administration vulnerability. Users are recommend to update to the version 5.6.10. You can get the update to 5.6.10 regularly via the Auto-Updater or directly via the download overview.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
shopware/shopwarePackagist | < 5.6.10 | 5.6.10 |
Affected products
1Patches
1a0850ffbc6f5Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
5- github.com/advisories/GHSA-7vmw-7x57-q6jwghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-32713ghsaADVISORY
- docs.shopware.com/en/shopware-5-en/security-updates/security-update-05-2021ghsax_refsource_MISCWEB
- github.com/shopware/shopware/commit/a0850ffbc6f581a8eb8425cc2bf77a0715e21e12ghsax_refsource_MISCWEB
- github.com/shopware/shopware/security/advisories/GHSA-f6p7-8xfw-fjqqghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.