CVE-2022-0263

Unrestricted Upload of File with Dangerous Type in pimcore/pimcore

CVSS 6.6 MEDIUMEPSS 1.1%CWE-434

Unrestricted Upload of File with Dangerous Type in Packagist pimcore/pimcore prior to 10.2.7.

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

Affected products

pimcore · pimcore/pimcore

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/pimcore/pimcore/commit/35d1853baf64d6a1d90fd8803e52439da53a3911 https://huntr.dev/bounties/96506857-06bc-4c84-88b7-4f397715bcf6