Vulnerability CVE-2023-2327
Published: 2023-04-27

Description:
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://github.com/pimcore/pimcore/commit/fb3056a21d439135480ee299bf1ab646867b5f4f
https://huntr.dev/bounties/7336b71f-a36f-4ce7-a26d-c8335ac713d6
Copyright 2026, cxsecurity.com

 

Back to Top