Vulnerabilities

CVE-2026-5362

by Fred · 27/04/2026

An authenticated attacker with permission to edit document content can store crafted HTML/JavaScript in a Document embed editable and cause script execution when the published page is rendered.

This issue affects pimcore: v12.3.3.

More information : https://fluidattacks.com/es/advisories/mago

Similar

Tags: Cybersecurity Alert