QID 996865
Date Published: 2024-01-25
QID 996865: PHP (Composer) Security Update for pimcore/admin-ui-classic-bundle (GHSA-cwx6-4wmf-c6xv)
The application allows to create zip files from available files on the site. The parameter "selectedIds", is susceptible to SQL Injection.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Github security advisory GHSA-cwx6-4wmf-c6xv for updates and patch information.
Vendor References
- GHSA-cwx6-4wmf-c6xv -
github.com/advisories/GHSA-cwx6-4wmf-c6xv
CVEs related to QID 996865
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| GHSA-cwx6-4wmf-c6xv | pimcore/admin-ui-classic-bundle |
|