GHSA-pr4f-4pcx-2r3h

GitHub Security Advisory

Pimcore Cross-site Scripting (XSS)

✓ GitHub Reviewed MODERATE Has CVE

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.4.

Packagist pimcore/pimcore

Affected versions: 0 (fixed in 10.5.4)

CVE-2022-2796

GHSA ID

GHSA-pr4f-4pcx-2r3h

Published

August 24, 2022 12:00 AM

Last Modified

April 24, 2024 5:22 PM

CVSS Score

5.0 /10

Primary Ecosystem

Packagist

Primary Package

pimcore/pimcore

GitHub Reviewed

✓ Yes

Last updated: November 25, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.