shopware/platform
Shopware Platform: Privilege Escalation via Sync API Bypass
A non-admin API user with integration:create ACL privilege can escalate to full administrator by creating an integration with admi
Shopware Platform: user_recovery hash exposed via Admin API
The `user_recovery` entity exposes its `hash` field through the Admin API search endpoint (`POST /api/search/user-recovery`), allo
shopware/platform: Non-admin users can escalate to admin via UserController::upsertUser()
UserController::upsertUser() writes user data in SYSTEM_SCOPE and does not filter the admin field, allowing non-admin API users wi
shopware/platform OAuth user repository timing attack vulnerability
A timing attack vulnerability in the OAuth user repository allows enumeration of administrator usernames.
shopware/platform: Missing ACL checks on order state transition endpoints
Order state transition endpoints in the Admin API are missing ACL privilege checks, allowing low-privileged users to change order
shopware/platform: Missing authorization in /store-api/handle-payment
The Store API endpoint `/store-api/handle-payment` lacks object-level authorization, allowing a low-privileged user to trigger pay