This advisory has been withdrawn because the maintainers no longer consider this to be a security issue. This link is maintained to preserve external references.
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 11.0.0.