VYPR
Unrated severityNVD Advisory· Published Dec 3, 2020· Updated Aug 4, 2024

Authorization bypass in Pimcore

CVE-2020-26246

Description

Pimcore is an open source digital experience platform. In Pimcore before version 6.8.5 it is possible to modify & create website settings without having the appropriate permissions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Pimcore/Pimcorellm-fuzzy2 versions
    <6.8.5+ 1 more
    • (no CPE)range: <6.8.5
    • (no CPE)range: < 6.8.5

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.