Name of the Vulnerable Software and Affected Versions: Shopware versions prior to 5.2.16

Description: The issue allows for the execution of unauthorized foreign code under certain circumstances. A potential threat arises when a template not derived from the Shopware standard is completely copied. Themes or plugins that execute or overwrite specific template code are affected. The vulnerable code is located in the emotion.tpl file, with specific paths given for "Emotion template" and "Responsive template". The issue involves the execution of unauthorized code when a particular line of template code is not properly secured.

Recommendations: For versions prior to 5.2.16, replace the complete line beginning with {eval var=$sSupport.sFields[$sKey]... with the following: {$sSupport.sFields[$sKey]|replace:'{literal}':'|replace:'{/literal}':'|replace:'%*%':"{s name='RequiredField' namespace='frontend/register/index'}{/s}"}.