Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.18.
References
Configurations
History
04 Mar 2023, 02:01
Type | Values Removed | Values Added |
---|---|---|
First Time |
Pimcore
Pimcore pimcore |
|
CPE | cpe:2.3:a:pimcore:pimcore:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
References | (CONFIRM) https://huntr.dev/bounties/cfa80332-e4cf-4d64-b3e5-e10298628d17 - Exploit, Patch | |
References | (MISC) https://github.com/pimcore/pimcore/commit/c6368b7cc69a3ebf2c83de7586f492ca1f404dd3 - Patch |
01 Mar 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-01 14:15
Updated : 2023-12-10 14:48
NVD link : CVE-2023-1115
Mitre link : CVE-2023-1115
CVE.ORG link : CVE-2023-1115
JSON object : View
Products Affected
pimcore
- pimcore
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')