CVE-2024-29197 | Pimcore up to 11.1.6.0/11.2.1 pimcore_preview information disclosure (GHSA-5737-rqv4-v445)

Posted by Angelo Barbosa | Mar 26, 2024 | CVE

A vulnerability was found in Pimcore up to 11.1.6.0/11.2.1 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument pimcore_preview with the input true leads to information disclosure.

This vulnerability is handled as CVE-2024-29197. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29197 | Pimcore up to 11.1.6.0/11.2.1 pimcore_preview information disclosure (GHSA-5737-rqv4-v445)

Related Posts

CVE-2023-50162 | EmpireCMS 7.5 DoExecSql sql injection

CVE-2023-48839 | Appointment Scheduler 3.0 cross site scripting (ID 176055)

CVE-2024-6171 | Unlimited Elements For Elementor Plugin up to 1.5.112 on WordPress Antispam access control

CVE-2024-9112 | FastStone Image Viewer PSD File Parser out-of-bounds write (ZDI-24-1273)