Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore 10.5.17 and prior. A patch is available and anticipated to be part of 10.5.18.

Affected Packages

Packagist pimcore/pimcore

Affected versions: 0 (last affected: 10.5.17)

Related CVEs

CVE-2023-1067

Key Information

GHSA ID

GHSA-f2jh-mf2c-8278

Published

February 27, 2023 3:30 PM

Last Modified

March 1, 2023 1:53 AM

CVSS Score

5.0 /10

Primary Ecosystem

Packagist

Primary Package

pimcore/pimcore

GitHub Reviewed

✓ Yes

Dataset

Last updated: November 26, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.