CVE-2023-30848
on github
Published
Severity
CVSS v3:
8.8 HIGH
CVSS v2:
N/A
Description
Pimcore is an open source data and experience management platform. Prior to version 10.5.21, the admin search find API has a SQL injection vulnerability. Users should upgrade to version 10.5.21 to receive a patch or, as a workaround, apply the patch manually.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:pimcore:pimcore:*:*:*:*:*:*:*:* | n/a | 10.5.21 | * |