CVE-2023-2017: Server-Side Template Injection in Shopware 6 Allows Remote Code Execution via Bypassing Security Extension Validation
A Server-side Template Injection (SSTI) vulnerability has been discovered in Shopware 6, an open-source e-commerce platform. This vulnerability affects Shopware 6 versions v6.4.20.