Moderate severityNVD Advisory· Published Mar 24, 2022· Updated Aug 2, 2024
Cross-site Scripting (XSS) - Stored in pimcore/data-hub
CVE-2022-0955
Description
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/data-hub prior to 1.2.4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
pimcore/data-hubPackagist | < 1.2.4 | 1.2.4 |
Affected products
3- osv-coords2 versions
< 1.2.4+ 1 more
- (no CPE)range: < 1.2.4
- (no CPE)range: < 1.2.4
- pimcore/pimcore/data-hubv5Range: unspecified
Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- github.com/advisories/GHSA-vc5r-xfc4-4x22ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-0955ghsaADVISORY
- github.com/pimcore/data-hub/commit/15d5b57af2466eebd3bbc531ead5dafa35d0a36eghsax_refsource_MISCWEB
- huntr.dev/bounties/708971a6-1e6c-4c51-a411-255caeba51dfghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.