CVE-2023-28106
16.03.2023, 17:15
Pimcore is an open source data and experience management platform. Prior to version 10.5.19, an attacker can use cross-site scripting to send a malicious script to an unsuspecting user. Users may upgrade to version 10.5.19 to receive a patch or, as a workaround, apply the patch manually.
| Vendor | Product | Version |
|---|---|---|
| pimcore | pimcore | 𝑥 < 10.5.19 |
𝑥
= Vulnerable software versions
References