GHSA-8wg7-88cg-7p9j

Опубликовано: 07 мар. 2023

Источник: github

Github: Прошло ревью

CVSS3: 5.4

Описание

Withdrawn Advisory: Pimcore vulnerable to Cross-site Scripting

Withdrawn Advisory

This advisory has been withdrawn because the maintainers no longer consider this to be a security issue. This link is maintained to preserve external references.

Original Description

Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 11.0.0.

Ссылки

Пакеты

Наименование

pimcore/pimcore

composer

Затронутые версииВерсия исправления

< 11.0.0

11.0.0

5.4 Medium

CVSS3

CVE ID

CVE-2023-1247

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-1247

nvd

почти 3 года назад

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

5.4 Medium

CVSS3

CVE ID

CVE-2023-1247

Дефекты

CWE-79