Vulnerability CVE-2024-23646

Vulnerability CVE-2024-23646

Published: 2024-01-24

Description:

Type:

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

https://github.com/pimcore/admin-ui-classic-bundle/security/advisories/GHSA-cwx6-4wmf-c6xv

https://github.com/pimcore/admin-ui-classic-bundle/commit/363afef29496cc40a8b863c2ca2338979fcf50a8

https://github.com/pimcore/admin-ui-classic-bundle/blob/1.x/src/Controller/Admin/Asset/AssetController.php#L2006

https://github.com/pimcore/admin-ui-classic-bundle/blob/1.x/src/Controller/Admin/Asset/AssetController.php#L2087

https://github.com/pimcore/admin-ui-classic-bundle/releases/tag/v1.3.2