Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/01/16 5:26 p.m.5 views

CVE-2026-23496

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS6.7AI score0.00001EPSS
Exploits1References1
NVD
NVDadded 2026/01/15 5:16 p.m.2 views

CVE-2026-23496

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS0.00001EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2026/01/15 4:58 p.m.2 views

CVE-2026-23496 Pimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level Authorization

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS6.3AI score0.00001EPSS
Exploits1References5
EUVD
EUVDadded 2026/01/15 4:58 p.m.1 views

EUVD-2026-2726

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS6.2AI score0.00001EPSS
Exploits1References7
CVE
CVEadded 2026/01/15 4:58 p.m.5 views

CVE-2026-23496

Summary: The Pimcore Web2Print Tools Bundle contains aBroken Access Control flaw in the API endpoint that manages “Favourite Output Channel Configurations.” An authenticated backend user, even without explicit permissions for this feature, could list, create, update, or retrieve these configurati...

5.4CVSS6.3AI score0.00001EPSS
Exploits1References5Affected Software1
CNNVD
CNNVDadded 2026/01/15 12:0 a.m.1 views

Web2Print Tools Bundle for Pimcore Security Vulnerabilities

Web2Print Tools Bundle for Pimcore is an open-source extension suite developed for Pimcore. Versions prior to 5.2.2 and 6.1.1 of Web2Print Tools Bundle for Pimcore contained security vulnerabilities. These vulnerabilities stemmed from the lack of server-side authorization checks for API endpoints...

5.4CVSS5.8AI score0.00001EPSS
Exploits1References5
Huntr
Huntradded 2021/12/15 2:13 p.m.15 views

Cross-site Scripting (XSS) - Stored in pimcore/web2print-tools

Description Stored XSS in the Description of the Favorite Output Channel Configurations. Steps to reproduce 1.Go to https://demo.pimcore.fun/admin/ and login. 2.In the left menu bar, click the Settings icon then choose Favorite Output Channel Configurations, the Favorite Output Channel...

6.3AI score
Exploits0
Rows per page
Query Builder