CVE-2022-1429

描述

Pimcore is an open source data & experience management platform. A SQL injection was discovered in GridHelperService.php in GitHub repository pimcore/pimcore prior to 10.3.6.

受影響套件(1)

• Packagist/pimcore/pimcorefrom 0, < 10.3.6

CVSS 分數

參考連結(4)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2022-1429
• PATCHhttps://github.com/pimcore/pimcore
• WEBhttps://github.com/pimcore/pimcore/commit/523a735ab94f004459b84ffdfd3db784586bbd82
• WEBhttps://huntr.dev/bounties/cfba30b4-85fa-4499-9160-cd6e3119310e