3 matches found
CVE-2023-3820 SQL Injection in pimcore/pimcore
SQL Injection in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2023-3820 SQL Injection in pimcore/pimcore
SQL Injection in GitHub repository pimcore/pimcore prior to 10.6.4...
CVE-2023-3820
CVE-2023-3820 affects pimcore/pimcore prior to 10.6.4 with a SQL injection in the Data Objects path (GridHelperService.php per Veracode/GHSA notes; root cause is lack of protection for SQL query structure). Reported impacts include data enumeration, data alteration, and potential DoS through remo...