CVE-2023-28106
- Reference to the description:
- Description:
- Pimcore is an open source data and experience management platform. Prior to version 10.5.19, an attacker can use cross-site scripting to send a malicious script to an unsuspecting user. Users may upgrade to version 10.5.19 to receive a patch or, as a workaround, apply the patch manually.
- Last updated date:
- 03/22/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 03/22/2023
- Reference url to background
https://huntr.dev/bounties/fa77d780-9b23-404b-8c44-12108881d11a