Zertifiziert Certified
Shopware Security Plugin

Shopware Security Plugin

Version:

Free
Free

Without Support

Source Available
1820 Downloads
Shopware 6: Plugin status Shopware 6 Signet
This plugin will not be developed for Shopware 6
    Swag575294366635f
  • 1.1.19
  • 30 Sep 2019
  • Without Support
  • 5.0.0 – 5.0.4
    5.1.0 – 5.1.6
    5.2.0 – 5.2.27
    5.3.0 – 5.3.7
    5.4.0 – 5.4.6
    5.5.0 – 5.5.10
    5.6.0 – 5.6.2
Protect your shop from any vulnerabilities with the new Shopware Security Plugin. If you’re... more

Product information

Protect your shop from any vulnerabilities with the new Shopware Security Plugin. If you’re unable to update to the latest Shopware version (as recommended), you are able to protect your shop using updates from this plugin. In order to protect yourself from possible security vulnerabilities, simply download and activate the plugin in your backend.

Please be certain to always keep this plugin updated to its latest version.  

Show full description
Read, write and discuss reviews... more

Customer reviews

Average customer rating from 3 reviews:

Total (3)
Functionality
Usability
Documentation
Support Not available

Version 1.1.8 funktioniert nicht mit SW 5.2.26

2 Sep 2019

Im Backend nach Einloggen riesiger Alert, dass das Plugin auf 1.1.8 aktualisiert werden sollte, jedoch funktioniert es nicht für SW 5.2.26, trotz anderslautende Infos im Store. Z.Zt. nutzlos. Was soll das?

Total
Functionality
Usability
Documentation

Sinnvoll, praktisch, gut

26 Jul 2019

Ich finde die Lösung des Sicherheitsplugins super praktisch, vor allem da man hier nicht bei einem Sicherheitsrelease zwingend die aktuelle Version des Shopsystems einspielen muss und trotzdem schnell sicherheitskritische Lücken geschlossen werden können. Das ist erfahrungsgemäßg bei anderen Shopsystemen nicht immer so einfach. Bisher hatten wir beim Einspielen nie Probleme - es wurde immer mit einem Klick erfolgreich durchgeführt. Allerdings haben wir auch kaum Drittanbieter-Plugins im Einsatz.

Total
Functionality
Usability
Documentation

Nach Installation ist Shop zusammengebrochen

7 Jun 2019

Nach Installation ließ sich der Shop nicht mehr aufrufen. Das Backend auch nicht.

Total
Functionality
Usability
Documentation

Changelog

Version 1.1.19

Fixed a timing issue with double opt in registrations

Version 1.1.18

Add fix for possible XSS injections

Version 1.1.17

Fixed issues with product stream preview

Version 1.1.16

Add fix for possible authenticated remote code execution

Version 1.1.15

Add fix for possible XSS, DQL and SQL injections

Version 1.1.14

Add fix for possible XSS, CSRF Token Leakage and session fixation

Version 1.1.13

Add fix for remote code executions in the backend, a validation bypass attack and a path traversal in media live migration

Version 1.1.12

- Improved compatibility with composer installations - Protection against calls to the cache folder

Version 1.1.11

Add fix for XSS in newsletter and against an authenticated remote code execution in Shopware < 5.5.1

Version 1.1.10

Improve compatibility with third-party plugins

Version 1.1.9

Add additional integrity checks for the plugin manager

Version 1.1.8

Add fixes for authenticated SQLi, directory traversal vulnerabilities, unallowed currency changes and for vulnerabilities for the password recovery in Shopware < 5.4.3

Version 1.1.7

Fixed problems with the ProductStream preview

Version 1.1.6

Fixes problems with some filters/searches in the backend

Version 1.1.5

Fixes non persistent XSS vulnerabilities in Shopware >=5.2 <= 5.3.6. Improve plugin code and maintainability

Version 1.1.4

Improve compatibility with PHP < 5.5

Version 1.1.3

Improve compatibility with console

Version 1.1.2

Improve compatibility with third-party plugins

Version 1.1.1

Add fixes for authenticated SQLi, XXE and XSS vulnerabilities in Shopware >= 5.0 <= 5.3.3

Version 1.1.0

Add smarty function whitelist for security mode

Version 1.0.0

About the manufacturer

shopware AG shopware AG Shopware Enterprise Partner Shopware Enterprise Partner 88 Extensions 3.5 Ø Rating

Version:

Free
Free

Without Support

Recently viewed