Lucene search
K

8 matches found

OSV
OSV
added 2026/01/15 6:14 p.m.3 views

GHSA-4WG4-P27P-5Q2R Pimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level Authorization

Summary The application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an authenticated backend user without explicitely lacking permissions for this feature was still able to...

5.4CVSS6.8AI score0.00265EPSS
Exploits1References7
NVD
NVD
added 2026/01/15 5:16 p.m.7 views

CVE-2026-23496

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS0.00265EPSS
Exploits1References5
EUVD
EUVD
added 2026/01/15 4:58 p.m.4 views

EUVD-2026-2726

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS6.2AI score0.00265EPSS
Exploits1References7
Cvelist
Cvelist
added 2026/01/15 4:58 p.m.22 views

CVE-2026-23496 Pimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level Authorization

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS0.00265EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/15 4:58 p.m.3 views

CVE-2026-23496

Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and 6.1.1, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for managing "Favourite Output Channel Configurations." Testing revealed that an...

5.4CVSS5.5AI score0.00265EPSS
Exploits1References6Affected Software1
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.3 views

Qualcomm audio-kernel 缓冲区错误漏洞

Qualcomm audio-kernel is an audio management driver from Qualcomm, Inc. A buffer error vulnerability exists in Qualcomm audio-kernel that stems from a memory corruption when handling MFC channel configurations, which could lead to a denial of service...

7.8CVSS6.9AI score0.0007EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/28 1:39 p.m.51 views

Security Bulletin: GNOME libxml2 vulnerability affects IBM Safer Payments (CVE-2023-29469)

Summary Libxml2 is used by IBM Safer Payments as part of PMML models, external queries, and docx file templates for Outgoing Channel Configurations. This vulnerability has been addressed. Vulnerability Details CVEID:CVE-2023-29469 DESCRIPTION: GNOME libxml2 is vulnerable to a denial of service,...

6.5CVSS6.8AI score0.01013EPSS
Exploits0Affected Software1
Huntr
Huntr
added 2021/12/15 2:13 p.m.17 views

Cross-site Scripting (XSS) - Stored in pimcore/web2print-tools

Description Stored XSS in the Description of the Favorite Output Channel Configurations. Steps to reproduce 1.Go to https://demo.pimcore.fun/admin/ and login. 2.In the left menu bar, click the Settings icon then choose Favorite Output Channel Configurations, the Favorite Output Channel...

6.3AI score
Exploits0
Rows per page
Query Builder