Количество 2
Количество 2
CVE-2023-28850
Pimcore Perspective Editor provides an editor for Pimcore that allows users to add/remove/edit custom views and perspectives. This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other malicious sites. Version 1.5.1 has a patch. As a workaround, one may apply the patch manually.
GHSA-fq8q-55v3-2986
Pimcore Perspective Editor vulnerable to stored cross-site scripting (XSS) in perspective name
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-28850 Pimcore Perspective Editor provides an editor for Pimcore that allows users to add/remove/edit custom views and perspectives. This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other malicious sites. Version 1.5.1 has a patch. As a workaround, one may apply the patch manually. | CVSS3: 6.1 | 0% Низкий | почти 3 года назад |
| GHSA-fq8q-55v3-2986 Pimcore Perspective Editor vulnerable to stored cross-site scripting (XSS) in perspective name | CVSS3: 6.1 | 0% Низкий | почти 3 года назад |
Уязвимостей на страницу