2 matches found
CVE-2021-37702
Pimcore CVE-2021-37702 affects Pimcore before version 10.1.1, where Data Object CSV import allows formula injection. The issue is fixed in 10.1.1; remediation options include upgrading to 10.1.1 or applying the patch manually. The vulnerability stems from improper handling in CSV import that can ...
CVE-2021-37702 Improper Neutralization of Formula Elements in a CSV File in pimcore/pimcore
Pimcore is an open source data & experience management platform. Prior to version 10.1.1, Data Object CSV import allows formular injection. The problem is patched in 10.1.1. Aside from upgrading, one may apply the patch manually as a workaround...