2 matches found
CVE-2023-1117 Cross-site Scripting (XSS) - Stored in pimcore/pimcore
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.5.18...
CVE-2023-1117
The CVE-2023-1117 issue affects pimcore/pimcore prior to version 10.5.18 and is a Stored Cross-site Scripting (XSS) vulnerability. The root cause is an XSS flaw in the image/video thumbnail/config path that allows injected script execution when users view affected content. Remediation stated in t...