pimcore/pimcore Security Advisories for v11.0.0-ALPHA8 (4)
-
[HIGH] Flooding Server with Thumbnail files
PKSA-2ws5-72xf-nzn8 CVE-2024-32871 GHSA-277c-5vvj-9pwx
Affected version: >=11.0.0,<11.2.4
Reported by:
GitHub -
[MEDIUM] Pimcore TinyMCE Bundle - tinymce CVE-2024-29203, CVE-2024-29881
PKSA-8cp9-pysj-5xkk GHSA-vjwg-28gv-pm8h
Affected version: >=11.0.0-ALPHA1,<11.1.6.5|>=11.2.0,<11.2.3
Reported by:
GitHub -
[HIGH] Pimcore SQL Injection in Admin Grid Filter API through Multiselect::getFilterConditionExt()
PKSA-d1ts-d4yt-xjz4 CVE-2023-47637 GHSA-72hh-xf79-429p
Affected version: <11.1.1
Reported by:
GitHub -
[MEDIUM] Pimcore Cross-site Scripting vulnerability
PKSA-17vx-xhyz-z3x1 CVE-2023-5873 GHSA-j59v-hh4p-q92m
Affected version: <11.1.0
Reported by:
GitHub