CVE-2025-7954 Information

Description

A race condition vulnerability has been identified in Shopware’s voucher system of Shopware v6.6.10.4 that allows attackers to bypass intended voucher restrictions and exceed usage limitations.

Reference

https://github.com/shopware/shopware/issues/11245

Related CNNVD

CNNVD-202508-558 (Published: 2025-08-06)