[MEDIUM] Shopware: SSRF in Media External-Link Endpoint Bypasses IP Validation

PKSA-9x83-17hb-ky3t CVE-2026-48013 GHSA-gq96-5pfx-f4vc

Affected package: shopware/core

Affected version: >=6.7.0.0,<6.7.10.1

Reported by:
GitHub