CVE-2026-48008 | Shopware prior 6.6.10.18/6.7.10.1 Sync API IntegrationDefinition.php SyncController::sync admin improper synchronization
A vulnerability was found in Shopware and classified as critical. This impacts the function SyncController::sync of the file src/Core/Framework/Integration/IntegrationDefinition.php of the component Sync API. Executing a manipulation of the argument admin can lead to improper synchronization.
The identification of this vulnerability is CVE-2026-48008. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More