3 matches found
CVE-2023-1702 Cross-site Scripting (XSS) - Generic in pimcore/pimcore
Cross-site Scripting XSS - Generic in GitHub repository pimcore/pimcore prior to 10.5.20...
CVE-2023-1702 Cross-site Scripting (XSS) - Generic in pimcore/pimcore
Cross-site Scripting XSS - Generic in GitHub repository pimcore/pimcore prior to 10.5.20...
CVE-2023-1702
CVE-2023-1702 is a Cross-site Scripting (XSS) vulnerability in pimcore/pimcore prior to 10.5.20. Multiple advisories (Red Hat, Veracode, OSV, GHSA) describe a generic XSS flaw affecting Pimcore and warn it could enable cookie theft or session hijacking if exploited. The issue relates to how asset...