Cross-site Scripting (XSS)

pimcore/pimcore is vulnerable to cross-site scripting XSS attacks. An attacker is able to bypass the validations due to improper input neutralization during web page generation. The vulnerability can be exploited via changing the rule name in the admin dev page allowing attackers to inject and...