The vulnerability of the Object bricks component or Field collection in the PHP pimcore software platform allows attackers to perform cross-site scripting attacks.

The vulnerability of the Object bricks component or the Field collection in the PHP pimcore software platform is related to the lack of measures taken to protect the structure of web pages when processing fields. Exploiting this vulnerability allows a malicious actor to perform cross-site scripti...

Pimcore 跨站脚本漏洞

Pimcore is an open source Web content management platform for creating and managing Web applications from the Austrian company Pimcore. The platform integrates Web content management, e-commerce framework and product information management applications. 10.4.0 versions of Pimcore before the...

Cross-site Scripting (XSS) - Reflected in pimcore/pimcore

Description Reflected cross site scripting vulnerability in pimpore/pimcore , it is in group field in Field collections and objectbricks in settings module. Proof of Concept 1 .Login to demo account 2 . Go to settings module --data objects --object bricks or Field collection -- edit any one and a...