GHSA-3w96-p6vh-c298

GitHub Security Advisory

Cross-site Scripting in pimcore

✓ GitHub Reviewed MODERATE Has CVE

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 1.5.17.

Packagist pimcore/pimcore

Affected versions: 0 (fixed in 1.5.17)

CVE-2023-0827

GHSA ID

GHSA-3w96-p6vh-c298

Published

February 14, 2023 3:30 PM

Last Modified

February 14, 2023 9:25 PM

CVSS Score

5.0 /10

Primary Ecosystem

Packagist

Primary Package

pimcore/pimcore

GitHub Reviewed

✓ Yes

Last updated: November 26, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.