3 matches found
CVE-2022-0911 Cross-site Scripting (XSS) - Stored in pimcore/pimcore
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.4.0...
CVE-2022-0911 Cross-site Scripting (XSS) - Stored in pimcore/pimcore
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.4.0...
CVE-2022-0911
PIMCORE CROSS-SITE SCRIPTING (CVE-2022-0911): Multiple connected sources confirm a stored XSS in pimcore/pimcore prior to version 10.4.0. The vulnerability stems from improper handling/validation of user-supplied data in Objectbricks and output filtering, enabling client-side JavaScript execution...