Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:48 a.m.9 views

CVE-2023-30852

Pimcore is an open source data and experience management platform. Prior to version 10.5.21, the /admin/misc/script-proxy API endpoint that is accessible by an authenticated administrator user is vulnerable to arbitrary JavaScript and CSS file read via the scriptPath and scripts parameters. The...

4.9CVSS6.4AI score0.01EPSS
Exploits0References1
Circl
Circl
added 2023/04/27 8:26 p.m.9 views

CVE-2023-30852

creationtimestamp| type| source ---|---|--- 2023-04-27 20:26:47+00:00| seen| https://t.me/cibsecurity/62998...

4.9CVSS5AI score0.01EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/27 4:44 p.m.16 views

CVE-2023-30852 Pimcore Arbitrary File Read in Admin JS CSS files

Pimcore is an open source data and experience management platform. Prior to version 10.5.21, the /admin/misc/script-proxy API endpoint that is accessible by an authenticated administrator user is vulnerable to arbitrary JavaScript and CSS file read via the scriptPath and scripts parameters. The...

4.4CVSS5.2AI score0.01EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/04/27 4:44 p.m.9 views

CVE-2023-30852 Pimcore Arbitrary File Read in Admin JS CSS files

Pimcore is an open source data and experience management platform. Prior to version 10.5.21, the /admin/misc/script-proxy API endpoint that is accessible by an authenticated administrator user is vulnerable to arbitrary JavaScript and CSS file read via the scriptPath and scripts parameters. The...

4.4CVSS4.9AI score0.01EPSS
Exploits0References3
Rows per page
Query Builder