icon

We found results for “

WS-2021-0068

Date: August 19, 2025

Exposure of .env if project root is configured as web root in shopware/production before 6.3.5.3.

Language: PHP

Severity Score

Severity Score

Weakness Type (CWE)

Files or Directories Accessible to External Parties

CWE-552

Exposure of Sensitive Information to an Unauthorized Actor

CWE-200

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): CHANGED
Confidentiality (C): HIGH
Integrity (I): LOW
Availability (A): LOW

Do you need more information?

Contact Us