[MEDIUM] Pimcore has a WordExport Authorization Bypass for Unauthorized Document Export

PKSA-v5bg-33q7-q8zj CVE-2026-45703 GHSA-332x-r494-54fq

Affected package: pimcore/pimcore

Affected version: <=12.3.6

Reported by:
GitHub