CVE-2024-29197 | Pimcore up to 11.1.6.0/11.2.1 pimcore_preview information disclosure (GHSA-5737-rqv4-v445)

Posted by Angelo Barbosa | Mar 26, 2024 | CVE

A vulnerability was found in Pimcore up to 11.1.6.0/11.2.1 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument pimcore_preview with the input true leads to information disclosure.

This vulnerability is handled as CVE-2024-29197. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29197 | Pimcore up to 11.1.6.0/11.2.1 pimcore_preview information disclosure (GHSA-5737-rqv4-v445)

Related Posts

CVE-2024-5474 | Lenovo Dolby Vision Provisioning software prior 2.0.0.2 default permission

CVE-2024-33574 | appsbd Vitepos Plugin up to 3.0.1 on WordPress authorization

CVE-2024-9315 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 manage_department.php id sql injection

CVE-2024-30928 | jeffpiazza DerbyNet 9.0 query.slide.next.inc classids sql injection