4 matches found
CVE-2022-3255
If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...
CVE-2022-3255 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...
CVE-2022-3255
CVE-2022-3255 is a cross-site scripting (XSS) issue affecting Pimcore. The vulnerability arises when an attacker can control a script executed in the victim’s browser, enabling the attacker to perform actions the user can, view and modify user data, and initiate interactions with other users that...
CVE-2022-3255 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...