3 matches found
CVE-2023-28850
Pimcore Perspective Editor provides an editor for Pimcore that allows users to add/remove/edit custom views and perspectives. This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other...
CVE-2023-28850
The CVE concerns Pimcore Perspective Editor vulnerability allowing stored XSS via perspective name handling, enabling cookie theft and potential unauthorized account access. Affected component: Pimcore Perspective Editor (web UI) in versions prior to 1.5.1; the issue stems from insufficient input...
CVE-2023-28850 Pimcore Perspective Editor vulnerable to Cross-site Scripting in perspective name
Pimcore Perspective Editor provides an editor for Pimcore that allows users to add/remove/edit custom views and perspectives. This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other...