CVE-2023-25240 Information

Feb 14, 2023 cve

Description

An improper SameSite Attribute vulnerability in pimCore v10.5.15 allows attackers to execute arbitrary code.

Reference

https://portswigger.net/web-security/csrf/bypassing-samesite-restrictions https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/pimcore/pimCore-10.5.15

Share on: