Release notes Shopware 6.7.2.1
Abstract
This security patch contains a XSS vulnerability fix as well as a critical bug fix. Please update immediately if possible. Otherwise please refer to the updated version of Shopware Security Plugin v4.0.0.
System requirements
- tested on PHP 8.2 and 8.4
- tested on MySQL 8 and MariaDB 11
Improvements
(No notable improvements in this patch release)
Fixed bugs
- GHSA-9v82-vcjx-m76j Properly escape active route params
- 12363 fix: missing product rule filter (backport: 6.7.2.x)
Credits
Thanks to all diligent friends for helping us make Shopware better and better with each pull request!
More resources
- Detailed diff on Github to the former version
- Changelog on GitHub for this version.
- Installation overview
- Update from a previous installation
Get in touch
Discuss about decisions, bugs you might stumble upon, etc in our community discord. See you there 😉
