Package impact
Packagist / shopware/core
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-48010 | unknown | — | — | 19 min ago | Shopware: Privilege escalation: non-admin user with user:create ACL can create admin accounts | |||
| CVE-2026-48009 | unknown | — | — | 21 min ago | Shopware: Admin Account Takeover via User Recovery Hash Exposure | |||
| CVE-2026-48008 | unknown | — | — | 24 min ago | Shopware: Privilege Escalation via Sync API Integration Admin Flag Bypass |