Security Advisories - PKSA-yt77-qm1k-2vvb - Packagist.org

PKSA-yt77-qm1k-2vvb Security Advisory

[LOW] Shopware: Timing-attack on admin panel allowing enumeration of administrator usernames

PKSA-yt77-qm1k-2vvb CVE-2026-48011 GHSA-7w52-7jvm-m9vw

Affected package: shopware/core

Affected version: <6.6.10.18|>=6.7.0.0,<6.7.10.1

Reported by:
GitHub