pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
References
Link | Resource |
---|---|
https://github.com/pimcore/pimcore/commit/dff1cb0c466abcd55f1268934de3ed937b7436a7 | Patch Third Party Advisory |
https://huntr.dev/bounties/8d88e48a-7124-4aaf-9f1d-6cfe4f9a79c1 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-01-17T15:10:09
Updated: 2022-01-17T15:10:09
Reserved: 2022-01-17T00:00:00
Link: CVE-2022-0256
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-01-17T16:15:07.583
Modified: 2022-01-24T20:22:06.080
Link: CVE-2022-0256
JSON object: View
Redhat Information
No data.
CWE