Shopware · Shopware · CVE-2021-37707
**Name of the Vulnerable Software and Affected Versions**
Shopware versions prior to 6.4.3.1
**Description**
The issue allows manipulation of product reviews via API.
**Recommendations**
For versions prior to 6.4.3.1, update to version 6.4.3.1.
For older versions of 6.1, 6.2, and 6.3, apply corresponding security measures available via a plugin.