Cross-Site Scripting (XSS)

pimcore/data-hub is vulnerable to stored cross-site scripting. The vulnerability exists because the configuration values are not escaped properly which allows a malicious attacker to inject and execute arbitrary javascript...