Vulnerability CVE-2023-2343


Published: 2023-04-27

Description:
Cross-site Scripting (XSS) - DOM in GitHub repository pimcore/pimcore prior to 10.5.21.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://github.com/pimcore/pimcore/commit/f1d904094700b513c4756904fa2b1e19d08d890e
https://huntr.dev/bounties/2fa17227-a717-4b66-ab5a-16bffbb4edb2

Copyright 2026, cxsecurity.com

 

Back to Top