Security Advisories - PKSA-fyfg-936j-xtjc - Packagist.org

PKSA-fyfg-936j-xtjc Security Advisory

[HIGH] Shopware vulnerable to a potential take over of app credentials

PKSA-fyfg-936j-xtjc CVE-2026-31889 GHSA-c4p7-rwrg-pf6p

Affected package: shopware/core

Affected version: <6.6.10.15|>=6.7.0.0,<6.7.8.1

Reported by:
GitHub