CVE-2022-1219

HIGH7.5EPSS 0.18%

SQL Injection in Pimcore

Published: 4/9/2022Modified: 11/8/2023
Also known as:GHSA-6gm7-j668-w6h9

Description

Pimcore prior to version 10.3.5 is vulnerable SQL injection in RecyclebinController.php. This vulnerability affects data confidentiality.

Affected packages (1)

CVSS scores

SourceVersionSeverityVector
osvCVSS 3.1HIGH7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References (4)