GHSA-pm3v-qxf6-fgxv

GitHub Security Advisory

Cross-site Scripting in pimcore

✓ GitHub Reviewed MODERATE Has CVE

Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.9.

Packagist pimcore/pimcore

Affected versions: 0 (fixed in 10.2.9)

CVE-2022-0285

GHSA ID

GHSA-pm3v-qxf6-fgxv

Published

January 21, 2022 6:08 PM

Last Modified

January 27, 2022 6:32 PM

CVSS Score

5.0 /10

Primary Ecosystem

Packagist

Primary Package

pimcore/pimcore

GitHub Reviewed

✓ Yes

Last updated: November 25, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.