Vulnerability CVE-2023-2630
Published: 2023-05-10

Description:
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://github.com/pimcore/pimcore/commit/7e32cc28145274ddfc30fb791012d26c1278bd38
https://huntr.dev/bounties/e1001870-b8d8-4921-8b9c-bbdfb1a1491e
Copyright 2026, cxsecurity.com

 

Back to Top