Vulnerabilities
Projects
Vulnerability Disclosure
About Us
Contact Us
Mend.io Vulnerability Database
What is a WS vulnerability ID?
What is an MSC vulnerability ID?
We found results for “”
WS-2023-0086
Good to know:
Date: March 9, 2023
Cross Site Scripting (XSS) in UrlSlug in pimcore/pimcore
Language: PHP
Severity Score
Severity Score
Weakness Type (CWE)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-79Top Fix
Upgrade Version
Upgrade to version pimcore/pimcore - dev-csfixer-pimcore-only;pimcore/pimcore - dev-phpstan-april;pimcore/pimcore - dev-fix_actionrenderer;pimcore/pimcore - dev-unmark_testcase_class;pimcore/pimcore - dev-installer-tinymce;pimcore/pimcore - dev-fix_cache_with_tilde;pimcore/pimcore - dev-installer_steps;pimcore/pimcore - dev-rgbacolor;pimcore/pimcore - dev-13639-task-update-documentation-links;pimcore/pimcore - dev-unmark_adminbundle_internal;pimcore/pimcore - dev-fix_ecommerce;pimcore/pimcore - dev-fix_search_message_handler;pimcore/pimcore - v10.5.6;pimcore/pimcore - dev-twig-3;pimcore/pimcore - dev-quote-fixes;pimcore/pimcore - dev-move_ecommerceframework_classes;pimcore/pimcore - dev-save_customlayout;pimcore/pimcore - dev-fix_undefined_analytics;pimcore/pimcore - dev-fix_system_settings;pimcore/pimcore - dev-s3-document-preview-generation;pimcore/pimcore - dev-password_minimum_length;pimcore/pimcore - dev-timezone-bug;pimcore/pimcore - dev-14152-task-doublecheck-every-controller-action-request-changed-in-13981;pimcore/pimcore - dev-disable_drag_drop_with_manual_indexes;pimcore/pimcore - dev-fix-parallelization;pimcore/pimcore - dev-remove-es-5;pimcore/pimcore - dev-docs_routing_pimcorex;pimcore/pimcore - dev-14315-calling-absolute-document;pimcore/pimcore - dev-xliff_import_data_object_fix;pimcore/pimcore - dev-12981-dataobject-owner-info-is-missing-on-denormalize-for-geo-datatypes;pimcore/pimcore - dev-log_retoate_fix;pimcore/pimcore - dev-13414-task-check-phpdoc-annotations-parameter-and-return-types-again;pimcore/pimcore - dev-dataobject_text_layout_template;pimcore/pimcore - dev-ecommerce_condition_fix;pimcore/pimcore - dev-input_qv;pimcore/pimcore - dev-mini_fix_actions;pimcore/pimcore - dev-security_config;pimcore/pimcore - dev-custom_login_screen_10;pimcore/pimcore - dev-internal-notification-service;pimcore/pimcore - 3.0.1;pimcore/pimcore - dev-load-yaml-files;pimcore/pimcore - dev-ui_improvements;pimcore/pimcore - dev-video-amp;pimcore/pimcore - dev-php-cs-fixer-3;pimcore/pimcore - dev-pwd;pimcore/pimcore - dev-issue#9984;pimcore/pimcore - dev-extjs_grid_striperows;pimcore/pimcore - dev-14260-refactor-sitemaps-and-redirects-bundle;pimcore/pimcore - dev-staticroute-fix;pimcore/pimcore - dev-remove-sqip;pimcore/pimcore - dev-documenttests;pimcore/pimcore - dev-pass-reset-token;pimcore/pimcore - dev-ace_editor_resize;pimcore/pimcore - dev-config_custom_reports;pimcore/pimcore - dev-stop_messenger_workers_on_config_update;pimcore/pimcore - dev-tagged_service;pimcore/pimcore - dev-6.8_notices;pimcore/pimcore - dev-login_throttling_plain;pimcore/pimcore - dev-remove_admin_bundle_table;pimcore/pimcore - dev-14036-elementinterface-to-int-only;pimcore/pimcore - dev-thumb_cache_improvement;pimcore/pimcore - dev-translation_fix_count_usage;pimcore/pimcore - dev-panel-layout-getLayout-getter;pimcore/pimcore - dev-vulnerabilities_ignore_list;pimcore/pimcore - dev-elementInterface-getParent;pimcore/pimcore - dev-db-mappings;pimcore/pimcore - dev-cache-translations;pimcore/pimcore - dev-fix_translations_sorting;pimcore/pimcore - dev-version_restore;pimcore/pimcore - dev-dataobject_dodelete;pimcore/pimcore - 4.0.1;pimcore/pimcore - dev-symfony_deprecations_fix;pimcore/pimcore - dev-zip_upload;pimcore/pimcore - dev-editables-fix;pimcore/pimcore - dev-elementdescriptor;pimcore/pimcore - dev-slug_locale_fix;pimcore/pimcore - dev-specify-gotenbergphp-version;pimcore/pimcore - dev-documents_block_controls;pimcore/pimcore - dev-10614-improvement-use-package-manager-npm-to-install-frontend-dependencies;pimcore/pimcore - dev-storage_directory_thumbnail;pimcore/pimcore - dev-name;pimcore/pimcore - dev-runtime-cache-clear;pimcore/pimcore - dev-remove-doc-imgs;pimcore/pimcore - dev-block_editable_fix;pimcore/pimcore - dev-remove_custom_optimizer;pimcore/pimcore - dev-class_rebuild_command_delete;pimcore/pimcore - dev-edge_login_page_fix;pimcore/pimcore - dev-minio-fix_actions;pimcore/pimcore - dev-zip_upload69;pimcore/pimcore - dev-update-symfony-dependencies-6-4;pimcore/pimcore - v11.0.0;pimcore/pimcore - dev-fix_admin_language;pimcore/pimcore - dev-fix_menu;pimcore/pimcore - dev-classificationstore-quoting;pimcore/pimcore - dev-cleanup_packages;pimcore/pimcore - dev-bundle-migration-followup;pimcore/pimcore - dev-encrypted_block;pimcore/pimcore - dev-escape_predefined;pimcore/pimcore - dev-env_var_fix;pimcore/pimcore - dev-fix_down_migrations_mysql8;pimcore/pimcore - dev-translations_permissions_check;pimcore/pimcore - dev-svg_sanitization;pimcore/pimcore - dev-consolidate_translation_models;pimcore/pimcore - dev-secret;pimcore/pimcore - dev-dataobject_wysiwyg_rewriteids;pimcore/pimcore - dev-adminer_session_fix;pimcore/pimcore - dev-custom_login_image;pimcore/pimcore - dev-data-object-normalizer;pimcore/pimcore - dev-revert-9296-symfony-messenger;pimcore/pimcore - dev-14591-bug-improve-relation-rendering-for-long-keys-in-data-objects;pimcore/pimcore - dev-admin_support_trait;pimcore/pimcore - dev-custom-views-docs;pimcore/pimcore - dev-12268-bug-deleted-components-in-custom-layouts;pimcore/pimcore - dev-admin_login_deprecation_fix;pimcore/pimcore - dev-doctrine-migrations-conflict;pimcore/pimcore - dev-libreoffice_permission_fix;pimcore/pimcore - dev-classification_store_filter_empty;pimcore/pimcore - dev-pimcore_cache_warmer_fix;pimcore/pimcore - dev-installbundle_new_structure;pimcore/pimcore - dev-monolog-2;pimcore/pimcore - dev-fix_getpermissions;pimcore/pimcore - dev-is_array_check_geopoint;pimcore/pimcore - dev-renamed-default-branch;pimcore/pimcore - dev-static_page_metadata_fix;pimcore/pimcore - dev-refactor_mariadb_verion;pimcore/pimcore - dev-document-setproperties;pimcore/pimcore - dev-12522-move-word-export-to-bundle;pimcore/pimcore - v10.5.19;pimcore/pimcore - dev-locationawareconfig_cache;pimcore/pimcore - dev-cache_writelock_misses;pimcore/pimcore - dev-csrf-code_optimization;pimcore/pimcore - dev-document_templates_filtering;pimcore/pimcore - dev-customlayout_fixes;pimcore/pimcore - dev-search_filter;pimcore/pimcore - dev-13471-bug-dataobject-block-element-with-localizedfields-and-wysiwyg-throws-exception;pimcore/pimcore - dev-unit_conversion_container_interface;pimcore/pimcore - dev-matomo-device-detector;pimcore/pimcore - dev-class_editor_escape;pimcore/pimcore - dev-12889-bug-problem-in-versions-after-removing-related-asset-from-pimcore;pimcore/pimcore - dev-lazy_loading_image_thumbnails;pimcore/pimcore - dev-pdf-scan;pimcore/pimcore - dev-get-all-translations_6;pimcore/pimcore - dev-system-yml-cleanup;pimcore/pimcore - dev-translations_import;pimcore/pimcore - dev-folder-previews;pimcore/pimcore - dev-getSafeVersionInfo;pimcore/pimcore - dev-areablocks_refresh_controls;pimcore/pimcore - dev-12101-bug-cleanup-fc-and-bricks-stores-on-lower-case-db-servers;pimcore/pimcore - dev-11014-improvement-consistently-use-yaml-not-yml_1;pimcore/pimcore - dev-fix_documents_editables_dialog_box;pimcore/pimcore - dev-fix_webdav_assets;pimcore/pimcore - dev-drop_folder;pimcore/pimcore - dev-fix-readme;pimcore/pimcore - dev-fix_video_error;pimcore/pimcore - dev-marking-things_as_final;pimcore/pimcore - dev-stan-fix;pimcore/pimcore - dev-fix-workflow-definitions;pimcore/pimcore - dev-trigger_login_redirect_event;pimcore/pimcore - dev-update-php-min-version;pimcore/pimcore - dev-ecommerce-remove-legacy-checkout-manager;pimcore/pimcore - dev-improve-mail;pimcore/pimcore - dev-egulias-email-validator-3;pimcore/pimcore - dev-doctrine-query-builder2;pimcore/pimcore - dev-11877-feature-migrate-all-logs-to-monolog;pimcore/pimcore - dev-fix_consider_children_tags_filter;pimcore/pimcore - dev-sf-toolbar-position-fix;pimcore/pimcore - dev-update_php_stan_version;pimcore/pimcore - dev-13359-improvement-use-json-data-type-where-appropriate;pimcore/pimcore - dev-webmozarts_console-parallelization;pimcore/pimcore - dev-helpers_charset_support;pimcore/pimcore - dev-revert-11243-patch-24;pimcore/pimcore - dev-get_object_vars;pimcore/pimcore - v11.0.0-ALPHA3;pimcore/pimcore - dev-redis_fix;pimcore/pimcore - dev-12749-bug-renaming-data-object-classes-crashes-system;pimcore/pimcore - dev-kick_make_html_snapshot;pimcore/pimcore - dev-fix_object_delete;pimcore/pimcore - dev-quoting-email-log;pimcore/pimcore - dev-checksum-regex-optional;pimcore/pimcore - dev-revert-7767-install-cache-on-install;pimcore/pimcore - dev-stale_config;pimcore/pimcore - dev-thumbnail_size_fixes;pimcore/pimcore - dev-tests_support_bc_layer;pimcore/pimcore - dev-remove_mysql_from_check;pimcore/pimcore - dev-no_session_on_request_stateless;pimcore/pimcore - dev-core_and_installbundle_config;pimcore/pimcore - dev-notification-csrf;pimcore/pimcore - dev-assets_fix_custom_settings_in_cache;pimcore/pimcore - dev-typed_properties_installbundle;pimcore/pimcore - dev-fix_phpstan2;pimcore/pimcore - dev-location-aware-config-refactoring;pimcore/pimcore - dev-editable-refactoring;pimcore/pimcore - dev-symfony_class_compatibility;pimcore/pimcore - dev-psalm-latests;pimcore/pimcore - dev-current-user-admin;pimcore/pimcore - dev-zoom_std_image;pimcore/pimcore - dev-deprecated-editable-factory;pimcore/pimcore - dev-deprecate_default_page_type;pimcore/pimcore - dev-14482-class-resolver;pimcore/pimcore - dev-asset_update_task_prevent_repeat;pimcore/pimcore - dev-assets_preview_tmpfiles;pimcore/pimcore - dev-github-actions;pimcore/pimcore - v5.7.1;pimcore/pimcore - dev-object_save_icon;pimcore/pimcore - dev-csv-memory-usage;pimcore/pimcore - dev-AutomatedPR-from-7245001296-11.x;pimcore/pimcore - dev-make_new_authenticator_default;pimcore/pimcore - dev-ecommerce-deprecate-es6;pimcore/pimcore - dev-docs_first_project;pimcore/pimcore - dev-14372-system-settings-change-valid_languages-format;pimcore/pimcore - dev-no-cache-debug-mode;pimcore/pimcore - dev-thumbnail_hashes;pimcore/pimcore - dev-admin_ui_search_escaping;pimcore/pimcore - dev-reset-one-catalogue-init;pimcore/pimcore - dev-refactor-classification-store;pimcore/pimcore - dev-fix_asset_thumbnails_gethtml;pimcore/pimcore - dev-admin_grid_rowediting;pimcore/pimcore - dev-ecommerce-deprecate-old-checkoutmanager;pimcore/pimcore - dev-ecommerce_price_rule_fix;pimcore/pimcore - dev-doc-link-update;pimcore/pimcore - dev-12436-improvement-improve-the-way-pimcore-respects-timezones;pimcore/pimcore - dev-objectbrick_inheritance_required;pimcore/pimcore - dev-repo-sync/sync-common-files/default;pimcore/pimcore - dev-12544-customlayouts-add-filter-option-on-listing;pimcore/pimcore - dev-psalm_test;pimcore/pimcore - dev-14610-remove-unused-code;pimcore/pimcore - dev-added-missing-patchnotes-from-10.6-to-11.x;pimcore/pimcore - dev-remove_matomo;pimcore/pimcore - dev-fix_template_attribute;pimcore/pimcore - dev-editables_remove_method_exists;pimcore/pimcore - dev-uuid-upgrade;pimcore/pimcore - dev-13512-task-implement-method-to-get-the-version-dependent-system-column-name-for-data-objects;pimcore/pimcore - dev-fix_download_thumbs_auto_format;pimcore/pimcore - dev-php-8-not-supported;pimcore/pimcore - dev-fix_hotspotimage_modal_window_background;pimcore/pimcore - dev-unpublished_objects;pimcore/pimcore - dev-13656-task-fix-possible-errors-after-applying-php-native-types;pimcore/pimcore - dev-select-datatype-admin-options;pimcore/pimcore - dev-remove_sanitizer_from_link_editable;pimcore/pimcore - dev-use_symfony_uuid;pimcore/pimcore - dev-12628-bug-manual-sorting-of-object-does-not-work;pimcore/pimcore - dev-fix_user_type;pimcore/pimcore - dev-bump_html_to_markdown;pimcore/pimcore - dev-delete_en_json;pimcore/pimcore - dev-email_preview_allow_external_img;pimcore/pimcore - dev-tests_for_symfony_63;pimcore/pimcore - dev-deprecate_importServerFiles;pimcore/pimcore - dev-docs-document-preview-thumb;pimcore/pimcore - dev-new-twig-block-syntax;pimcore/pimcore - dev-reverted-service-deprecation;pimcore/pimcore - dev-deprecate-es-5;pimcore/pimcore - dev-ecommerce_refactoring_followup;pimcore/pimcore - dev-system_user_fix;pimcore/pimcore - dev-followup_11127;pimcore/pimcore - dev-14111-asset-remove-vr-preview;pimcore/pimcore - dev-fix_return_type;pimcore/pimcore - dev-fix_dataobject_cleanupForExport;pimcore/pimcore - dev-fix-types-task-class;pimcore/pimcore - dev-web-to-print-cron;pimcore/pimcore - dev-video_preview_duplicate_tmpfiles;pimcore/pimcore - dev-generic-execution-engine;pimcore/pimcore - dev-reverse-relation-support;pimcore/pimcore - dev-12939-bug-classcreate-with-undefined-parameter-crashes-js;pimcore/pimcore - dev-gee-context-default-error-handling-mode;pimcore/pimcore - dev-cleanup-duplicate-code-releations;pimcore/pimcore - dev-13992-bugobjects-encrypted-field-in-localized-field-doesnt-work;pimcore/pimcore - dev-mailer_exception;pimcore/pimcore - dev-admin-bundle-final-classes;pimcore/pimcore - dev-session_service_fallback;pimcore/pimcore - dev-consider-platform-version;pimcore/pimcore - dev-deprecate_statehelper_trait;pimcore/pimcore - dev-2753-fix-filter-type;pimcore/pimcore - dev-metadata_listing;pimcore/pimcore - dev-imagick_svg_fix;pimcore/pimcore - dev-monolog_channels_exclude;pimcore/pimcore - dev-13255-bug-wrongfully-inheritance-of-object-bricks;pimcore/pimcore - dev-exception-create-with-id;pimcore/pimcore - dev-codeception_symfony_module_upgrade;pimcore/pimcore - dev-remove-chromium;pimcore/pimcore - dev-14671-add-remote-filter-in-the-dependencies-view-follow-up;pimcore/pimcore - dev-12486-improvement-slow-object_url_slugs-queries-add-indices;pimcore/pimcore - dev-12859-task-generate-a-migration-for-rebuilding-data-object-classes;pimcore/pimcore - dev-controller_context;pimcore/pimcore - dev-document_link_marshal;pimcore/pimcore - dev-fix-php-stan;pimcore/pimcore - dev-session-configurator-followup;pimcore/pimcore - dev-cache_tags_performance_optimization;pimcore/pimcore - dev-bootstrap-cleanup;pimcore/pimcore - dev-set_default_values_as_in_db;pimcore/pimcore - dev-fix_php_stan;pimcore/pimcore - dev-14463-task-ecom-framework-js-and-css-updates;pimcore/pimcore - dev-pixel_flood_attack;pimcore/pimcore - dev-fix_allowed_bricks;pimcore/pimcore - dev-fix_xliff;pimcore/pimcore - dev-php_8.3_support;pimcore/pimcore - dev-dependencies-messenger;pimcore/pimcore - dev-gotenberg;pimcore/pimcore - dev-code_style_fix;pimcore/pimcore - dev-flysystem_storage_email_log;pimcore/pimcore - dev-maintenance_composer_install;pimcore/pimcore - dev-qv_cs;pimcore/pimcore - dev-dataobject_blocks_links_unserialize;pimcore/pimcore - dev-geopoint;pimcore/pimcore - dev-10_5_eol;pimcore/pimcore - dev-inputquantityvalue_grid_fix;pimcore/pimcore - dev-remove-legacy-scripts;pimcore/pimcore - dev-editmode-error-on-click;pimcore/pimcore - dev-image-adapter-support;pimcore/pimcore - dev-14228-drop-image-dimensions-validation-for-non-images;pimcore/pimcore - v5.0.0-RC;pimcore/pimcore - 7343.x-dev;pimcore/pimcore - dev-upgrade_mjaschen_phpgeo;pimcore/pimcore - dev-12796-transfer-the-task-with-the-pimcoreeventspostsaveobject-event-in-extjs;pimcore/pimcore - 11.0.x-dev;pimcore/pimcore - dev-auto-increment-fix;pimcore/pimcore - dev-deprecate_matomo;pimcore/pimcore - dev-cs_fixer;pimcore/pimcore - dev-fixed-gzip;pimcore/pimcore - dev-experimental;pimcore/pimcore - dev-thumbnail-cache-fix;pimcore/pimcore - dev-custom_report_warning_fix;pimcore/pimcore - dev-fix-appliclogger-fly-path;pimcore/pimcore - dev-extend_allow_attributes;pimcore/pimcore - dev-unmark_adminbundle_internal2;pimcore/pimcore - dev-data-types-internal-public-properties;pimcore/pimcore - dev-fix_csp_service_tag;pimcore/pimcore - dev-user_save_warning;pimcore/pimcore - dev-param_converter;pimcore/pimcore - dev-fix_flysystem_visibility;pimcore/pimcore - dev-fix_grid_click_to_open;pimcore/pimcore - dev-ckeditor_wysiwyg_warning;pimcore/pimcore - dev-13863-resolveblockedvars-should-require-varexporterinterface;pimcore/pimcore - dev-console-deprecations;pimcore/pimcore - dev-linkcontroller;pimcore/pimcore - dev-translations;pimcore/pimcore - dev-carbon-updates--with-windsurf-ai;pimcore/pimcore - dev-scan-pdf;pimcore/pimcore - dev-area-brick-template-location;pimcore/pimcore - dev-remove_google_marketing;pimcore/pimcore - dev-fixed_warning_in_gd;pimcore/pimcore - dev-discount_fixes;pimcore/pimcore - dev-bug-fix-documentation;pimcore/pimcore - dev-extjs7_X;pimcore/pimcore - dev-datefield-save-bug;pimcore/pimcore - dev-sql_quote_identifier;pimcore/pimcore - dev-avoid-collation-change-o_type;pimcore/pimcore - dev-param_return_model_twig;pimcore/pimcore - dev-test;pimcore/pimcore - dev-type-fixes;pimcore/pimcore - dev-worfkflow_pr_clone;pimcore/pimcore - dev-removed-partsbuilder;pimcore/pimcore - dev-phpdoc_lib_image;pimcore/pimcore - dev-list_stores;pimcore/pimcore - dev-rtzrtz;pimcore/pimcore - dev-migration_removing_o_prefix_on_FKs;pimcore/pimcore - dev-codeception_160_travis;pimcore/pimcore - dev-sync_configuration_helper;pimcore/pimcore - dev-workflow-fixes;pimcore/pimcore - dev-13028-bug-missing-context-in-grouped-objectbricks;pimcore/pimcore - dev-areablock-fixes;pimcore/pimcore - dev-ecommerce-indexservice-thow-exceptions;pimcore/pimcore - dev-refactor_models_tool;pimcore/pimcore - 2.2.0;pimcore/pimcore - dev-docs-clearify_prefix;pimcore/pimcore - dev-storage_migration_command_fix;pimcore/pimcore - dev-google_api;pimcore/pimcore - dev-alias;pimcore/pimcore - dev-register_translation_domains;pimcore/pimcore - dev-12916-improvement-safety-measure-preventing-user-from-deleting-parent-instead-of-elements-selected-in-grid;pimcore/pimcore - dev-ckeditor_remove_wordcount;pimcore/pimcore - dev-alt-prefix;pimcore/pimcore - dev-workflow_mail_template;pimcore/pimcore - dev-application-logger;pimcore/pimcore - dev-asset_preview_tab_supporting_audio;pimcore/pimcore - dev-refactor_ecommerce_bundle;pimcore/pimcore - dev-14286-improvement-rename-master-to-main-or-similar-in-all-translations-and-in-code;pimcore/pimcore - dev-optimize_relation_saving;pimcore/pimcore - dev-fix_deprecation_migrate_elements_command;pimcore/pimcore - dev-common-search-interface;pimcore/pimcore - dev-documents_editable_interfaces;pimcore/pimcore - dev-fix_validation_message;pimcore/pimcore - dev-hardlink-sites-fix;pimcore/pimcore - dev-refactor_read_and_write_target;pimcore/pimcore - dev-fix_codeception;pimcore/pimcore - dev-xliff_source_export_data_fix;pimcore/pimcore - dev-escape_workspace;pimcore/pimcore - dev-predefined_properties_config_2;pimcore/pimcore - dev-removed-mysql-5.7;pimcore/pimcore - dev-13051-bug-unable-to-create-data-object-class;pimcore/pimcore - dev-more-type-fixes;pimcore/pimcore - dev-translation-fallback;pimcore/pimcore - dev-99-unable-to-download-custom-download;pimcore/pimcore - dev-temp-file-optimizations;pimcore/pimcore - dev-blocks_editable_buttons_refresh;pimcore/pimcore - dev-fix_object_tree_order;pimcore/pimcore - dev-get_children_load_followup;pimcore/pimcore - dev-preparation_v11_migrate_o_prefixes;pimcore/pimcore - dev-perspective_custom_views2;pimcore/pimcore - dev-12863-bugcustomviews-allow-objects-empy-does-not-allow-all;pimcore/pimcore - dev-import_check_path;pimcore/pimcore - dev-correct_bundleadminclasstrait_path;pimcore/pimcore - dev-remove_aliases_functionality;pimcore/pimcore - dev-targeting;pimcore/pimcore - dev-revert_assets_install;pimcore/pimcore - dev-fix_xss_document_link;hirakch/pimcore - dev-entities_di;hirakch/pimcore - v6.3.6;hirakch/pimcore - dev-12518-move-seo-to-bundle;hirakch/pimcore - v5.6.2;hirakch/pimcore - dev-security_authentication_new;hirakch/pimcore - dev-psalm_actions;hirakch/pimcore - v6.6.8;hirakch/pimcore - 6.9.x-dev;hirakch/pimcore - v6.5.1;hirakch/pimcore - dev-fix/10.x/8228;hirakch/pimcore - dev-version_storage;hirakch/pimcore - v5.4.4;hirakch/pimcore - v6.2.3;hirakch/pimcore - v10.1.4;hirakch/pimcore - v6.8.0;hirakch/pimcore - 11.x-dev;hirakch/pimcore - v6.0.0;hirakch/pimcore - 2.2.0;hirakch/pimcore - v5.0.0;hirakch/pimcore - dev-assets_metadata_normalizer;hirakch/pimcore - v10.0.9;hirakch/pimcore - v6.8.10;hirakch/pimcore - v6.8.7;hirakch/pimcore - dev-move_xliff_bundle;hirakch/pimcore - v10.2.1;hirakch/pimcore - v10.0.0-BETA3;hirakch/pimcore - v6.4.2;hirakch/pimcore - dev-grid-view-empty-select;hirakch/pimcore - v10.0.0-BETA1;hirakch/pimcore - dev-12527-move-staticroutes-to-bundle;hirakch/pimcore - 7.x-dev;hirakch/pimcore - v6.2.1;hirakch/pimcore - no_fix;hirakch/pimcore - v5.6.6;hirakch/pimcore - 11.2.x-dev;youwe/pimcore-stable - dev-pimcore4;youwe/pimcore-stable - no_fix;kudeepak/pimcore - 2.2.0;kudeepak/pimcore - no_fix;cxc222/pimcore - 2.2.0;cxc222/pimcore - no_fix;cxc222/pimcore - 5.6.1
CVSS v3.1
| Base Score: |
|
|---|---|
| Attack Vector (AV): | NETWORK |
| Attack Complexity (AC): | LOW |
| Privileges Required (PR): | LOW |
| User Interaction (UI): | REQUIRED |
| Scope (S): | CHANGED |
| Confidentiality (C): | LOW |
| Integrity (I): | LOW |
| Availability (A): | NONE |