2 matches found
CVE-2024-11954 Pimcore Search Document cross site scripting
A vulnerability classified as problematic was found in Pimcore 11.4.2. Affected by this vulnerability is an unknown functionality of the component Search Document. The manipulation leads to basic cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the publ...
CVE-2024-11954
Pimcore 11.4.2 contains a stored XSS in the Search Document component due to inadequate input sanitization. Authentication is required (as per the GHSA advisory), and malicious script can execute in the context of other users’ browsers when affected data is viewed. Exploitation exists (e.g., Expl...