CVE-2024-23648 | Pimcore admin-ui-classic-bundle up to 1.2.2 injection (GHSA-mrqg-mwh7-q94j)

Inserito da Angelo Barbosa | Gen 24, 2024 | CVE

A vulnerability was found in Pimcore admin-ui-classic-bundle up to 1.2.2. It has been rated as very critical. Affected by this issue is some unknown functionality. The manipulation leads to injection.

This vulnerability is handled as CVE-2024-23648. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23648 | Pimcore admin-ui-classic-bundle up to 1.2.2 injection (GHSA-mrqg-mwh7-q94j)

Post correlati

CVE-2024-28095 | Schoolbox up to 23.1.2 News cross site scripting

CVE-2024-0278 | Kashipara Food Management System up to 1.0 partylist_edit_submit.php id sql injection

CVE-2024-6363 | Stock Ticker Plugin up to 3.24.4 on WordPress Shortcode stock_ticker cross site scripting

CVE-2023-51521 | ExpressTech Quiz and Survey Master Plugin up to 8.1.18 on WordPress cross-site request forgery