[HIGH] Pimcore Admin Classic Bundle Vulnerable to SQL Injection in Translation Grid Date Filter via Unsanitized Property Parameter

PKSA-v29g-sqpm-mznn CVE-2026-44741 GHSA-h4ph-crvj-9h92

Affected package: pimcore/admin-ui-classic-bundle

Affected version: <=2.3.5

Reported by:
GitHub