Multiple vulnerabilities in Pimcore
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 4 |
| CVE-ID | CVE-2023-1116 CVE-2023-1067 CVE-2023-1117 CVE-2023-1115 |
| CWE-ID | CWE-79 |
| Exploitation vector | Network |
| Public exploit |
Public exploit code for vulnerability #1 is available. Public exploit code for vulnerability #2 is available. Public exploit code for vulnerability #3 is available. Public exploit code for vulnerability #4 is available. |
| Vulnerable software |
Pimcore Web applications / CMS |
| Vendor | Pimcore |
Security Bulletin
This security bulletin contains information about 4 vulnerabilities.
1) Stored cross-site scripting
EUVDB-ID: #VU72711
Risk: Low
CVSSv4.0: 5.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P/U:Clear]
CVE-ID: CVE-2023-1116
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionThe disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data in Email Blacklist. A remote attacker can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
MitigationInstall updates from vendor's website.
Vulnerable software versionsPimcore: 10.5.0 - 10.5.17
CPE2.3- cpe:2.3:a:pimcore:pimcore:10.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.2:*:*:*:*:*:*:*
https://github.com/pimcore/pimcore/commit/f6d322efa207a737eedd8726b7c92e957a83341e
https://huntr.dev/bounties/3245ff99-9adf-4db9-af94-f995747e09d1
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
2) Stored cross-site scripting
EUVDB-ID: #VU72712
Risk: Low
CVSSv4.0: 2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P/U:Clear]
CVE-ID: CVE-2023-1067
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionThe disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data in GDPR data extractor. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
MitigationInstall updates from vendor's website.
Vulnerable software versionsPimcore: 10.5.0 - 10.5.17
CPE2.3- cpe:2.3:a:pimcore:pimcore:10.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.2:*:*:*:*:*:*:*
https://huntr.dev/bounties/31d17b34-f80d-49f2-86e7-97ae715cc045
https://github.com/pimcore/pimcore/commit/4b5733266d7d6aeb4f221a15e005db83fc198edf
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
3) Cross-site scripting
EUVDB-ID: #VU72714
Risk: Low
CVSSv4.0: 2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P/U:Clear]
CVE-ID: CVE-2023-1117
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionThe disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data in image/video thumbnail config. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
MitigationInstall updates from vendor's website.
Vulnerable software versionsPimcore: 10.5.0 - 10.5.17
CPE2.3- cpe:2.3:a:pimcore:pimcore:10.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.2:*:*:*:*:*:*:*
https://github.com/pimcore/pimcore/commit/b9ba69f66d6a9986fb36f239661b98cd33a89853
https://huntr.dev/bounties/e8c0044d-a31b-4347-b2d5-59fbf492da39
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
4) Cross-site scripting
EUVDB-ID: #VU72713
Risk: Low
CVSSv4.0: 2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P/U:Clear]
CVE-ID: CVE-2023-1115
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionThe disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.
The vulnerability exists due to insufficient sanitization of user-supplied data in Documents Link Editable. A remote user can inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
MitigationInstall updates from vendor's website.
Vulnerable software versionsPimcore: 10.5.0 - 10.5.17
CPE2.3- cpe:2.3:a:pimcore:pimcore:10.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:pimcore:pimcore:10.5.2:*:*:*:*:*:*:*
https://huntr.dev/bounties/cfa80332-e4cf-4d64-b3e5-e10298628d17
https://github.com/pimcore/pimcore/commit/c6368b7cc69a3ebf2c83de7586f492ca1f404dd3
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
