Vulnerability CVE-2023-2339
Published: 2023-04-27

Description:
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.5.21.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://huntr.dev/bounties/bb1537a5-fe7b-4c77-a582-10a82435fbc2
https://github.com/pimcore/pimcore/commit/6946f8a5a0a93b516c49f17a5b45044eebd73480
Copyright 2026, cxsecurity.com

 

Back to Top