GHSA-9xg6-75mh-7x3f: Cross-site Scripting (XSS) in pimcore

Skip to content

• • Actions

    Automate any workflow

  • Packages

    Host and manage packages

  • Security

    Find and fix vulnerabilities

  • Codespaces

    Instant dev environments

  • Copilot

    Write better code with AI

  • Code review

    Manage code changes

  • Issues

    Plan and track work

  • Discussions

    Collaborate outside of code

• • GitHub Sponsors

    Fund open source developers

*   The ReadME Project
    
    GitHub community articles

• Pricing

1. GitHub Advisory Database
2. GitHub Reviewed
3. CVE-2023-2361

Cross-site Scripting (XSS) in pimcore

Moderate severity GitHub Reviewed Published Apr 28, 2023 in pimcore/pimcore

Package

composer pimcore/pimcore (Composer)

Affected versions

< 10.5.21

Description

Published to the GitHub Advisory Database

May 1, 2023

Severity

CVSS base metrics

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Weaknesses

GHSA ID

GHSA-9xg6-75mh-7x3f

Source code