Vulnerability CVE-2023-3820


Published: 2023-07-21

Description:
SQL Injection in GitHub repository pimcore/pimcore prior to 10.6.4.

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://github.com/pimcore/pimcore/commit/e641968979d4a2377bbea5e2a76bdede040d0b97
https://huntr.dev/bounties/b00a38b6-d040-494d-bf46-38f46ac1a1db

Copyright 2026, cxsecurity.com

 

Back to Top