CVE-2022-0955

Cross-site Scripting (XSS) - Stored in pimcore/data-hub

CVSS 6.5 MEDIUMEPSS 0.6%CWE-79

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/data-hub prior to 1.2.4.

CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

pimcore · pimcore/data-hub

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/pimcore/data-hub/commit/15d5b57af2466eebd3bbc531ead5dafa35d0a36e https://huntr.dev/bounties/708971a6-1e6c-4c51-a411-255caeba51df