Pimcore Perspective Editor provides an editor for Pimcore that allows users to add/remove/edit custom views and perspectives. This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other malicious sites. Version 1.5.1 has a patch. As a workaround, one may apply the patch manually.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| pimcore/perspective-editor(Packagist) | 0 | 1.5.1 | N/A |
CVSS Metrics
