Hi everybody, we just published Security Bulletin 2018-001: An attacker is able to bring servers to standstill by calling specially crafted URLs if OXID High Performance Option is activated and Varnish is used (denial of service/DoS).
You shall have been informed via e-mail about this issue. Also, we informed in the latest release notes for OXID eShop 6.0.1 and EE 5.3.7 that a fix for this security issue is contained. Kind regards Marco
