Shopware core vulnerabilities
by Sansec Support
Published in Guides
eComscan will detect Shopware installations that have important security patches available. Two methods of dealing with Shopware vulnerabilities exist:
- Update your existing Shopware installation
- Applying security patches via the Shopware Security plugin
Our recommendation is to always update your Shopware installation to the latest version whenever a security patch is released. If you opt to use the Security plugin, be aware that eComscan will still issue a vulnerability detection, as the plugin does not alter the code of your Shopware code base.
Read about the security update for versions 6.4.3.0 and earlier: https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-08-2021
Read about the security update for versions 6.3.5.2 and earlier: https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-04-2021
More information
All Shopware security updates: https://docs.shopware.com/en/security-updates
Shopware changelog/downloads: https://www.shopware.com/en/changelog/
What is Magecart?
Also known as digital skimming, this crime has surged since 2015. Criminals steal card data during online shopping. Who are behind these notorious hacks, how does it work, and how have Magecart attacks evolved over time?
About Magecart