Site icon API Security Blog

SQL Injection

shopware/core and shopware/platform is vulnerable to SQL Injection. The vulnerability is due to insufficient validation and improper handling of user input in the name field of the aggregations object in the Shopware API, allowing attackers to inject and execute arbitrary SQL…Read More

Exit mobile version