4 matches found
CVE-2022-2796
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.5.4...
CVE-2022-2796
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.5.4...
CVE-2022-2796 Cross-site Scripting (XSS) - Stored in pimcore/pimcore
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.5.4...
CVE-2022-2796
CVE-2022-2796 is a stored XSS vulnerability affecting Pimcore (pimcore/pimcore) prior to version 10.5.4. The issue stems from the Key/Name field in Admin Translation Settings, enabling attacker-controlled input to be stored and executed in the admin interface. Multiple sources (Red Hat, NVD, OSV,...