icon

We found results for “

WS-2023-0107

Good to know:

icon

Date: March 9, 2023

A Stored XSS vulnerability was found in perspective name in pimcore/perspective-editor prior to 1.5.1.

Language: PHP

Severity Score

Severity Score

Weakness Type (CWE)

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-79

Top Fix

icon

Upgrade Version

Upgrade to version pimcore/perspective-editor - dev-optimized-perspective-creation;pimcore/perspective-editor - dev-config_deployment_improvements;pimcore/perspective-editor - dev-stale_config;pimcore/perspective-editor - dev-docs-test;pimcore/perspective-editor - dev-114-request-input-explicit;pimcore/perspective-editor - dev-issue#426;pimcore/perspective-editor - v1.5.1;pimcore/perspective-editor - dev-add-container-extension-bundle;pimcore/perspective-editor - dev-mcop1-patch-1;pimcore/perspective-editor - v1.3.1;pimcore/perspective-editor - dev-78-improvement-replace-plugins-with-event-listener;pimcore/perspective-editor - dev-132-bug-removal-of-set-checkmarks-in-the-forbidden-dashboards-not-possible;pimcore/perspective-editor - v1.1.1

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): HIGH
User Interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality (C): LOW
Integrity (I): LOW
Availability (A): LOW

Do you need more information?

Contact Us