CVE-2026-23496
Summary: The Pimcore Web2Print Tools Bundle contains aBroken Access Control flaw in the API endpoint that manages “Favourite Output Channel Configurations.” An authenticated backend user, even without explicit permissions for this feature, could list, create, update, or retrieve these configurati...