Shopware’s inproper input validation can lead to Reflected XSS through...

7.1 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N

Description

Shopware is an open commerce platform. Versions 6.4.6.0 through 6.6.10.9 and 6.7.0.0 through 6.7.5.0 have a Reflected XSS vulnerability in AuthController.php. A request parameter from the login page URL is directly rendered within the Twig template of the Storefront login page without further processing or input validation. This allows direct code injection into the template via the URL parameter, waitTime, which lacks proper input validation. This issue is fixed in versions 6.6.10.10 and 6.7.5.1.

Basic Information

ID CVE-2025-67648

Source GitHub_M

Published Dec 10, 2025 at 23:55

Affected Product

Vendor shopware

Product shopware

Version >= 6.4.6.0, < 6.6.10.10

Affected Versions shopware shopware >= 6.4.6.0, < 6.6.10.10
shopware shopware >= 6.7.0.0, < 6.7.5.1

CWE Classification

CWE-79

References

{
    "lastseen": "",
    "description": "Shopware is an open commerce platform. Versions 6.4.6.0 through 6.6.10.9 and 6.7.0.0 through 6.7.5.0 have a Reflected XSS vulnerability in AuthController.php. A request parameter from the login page URL is directly rendered within the Twig template of the Storefront login page without further processing or input validation. This allows direct code injection into the template via the URL parameter, waitTime, which lacks proper input validation. This issue is fixed in versions 6.6.10.10 and 6.7.5.1.",
    "published": "2025-12-10T23:55:10.060Z",
    "modified": "2025-12-10T23:55:10.060Z",
    "type": "cve",
    "title": "Shopware's inproper input validation can lead to Reflected XSS through Storefront Login Page",
    "source": "GitHub_M",
    "references": "https://github.com/shopware/shopware/security/advisories/GHSA-6w82-v552-wjw2\nhttps://github.com/shopware/shopware/commit/c9242c02c84595d9fa3e2adf6a264bc90a657b58",
    "id": "CVE-2025-67648",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "shopware shopware >= 6.4.6.0, < 6.6.10.10\nshopware shopware >= 6.7.0.0, < 6.7.5.1",
    "sourceHref": "",
    "cvss": {
        "score": 7.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "shopware",
    "version": ">= 6.4.6.0, < 6.6.10.10",
    "vendor": "shopware",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Shopware’s inproper input validation can lead to Reflected XSS through Storefront Login Page_CVE-2025-67648