shopware/core and shopware/platform are vulnerable to SQL Injection. The vulnerability is caused due to a missing sanitization in the name field of the aggregations object while performing a search operation in Shopware application API. An attacker can exploit this using time-based SQL…Read More