{"id":"CVE-2023-3673","summary":"SQL Injection in pimcore/pimcore","details":" SQL Injection in GitHub repository pimcore/pimcore prior to 10.5.24.","aliases":["GHSA-rxp5-qwrf-pfv3"],"modified":"2026-05-15T11:54:03.761303575Z","published":"2023-07-14T12:19:04.063Z","database_specific":{"cna_assigner":"@huntrdev","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/3xxx/CVE-2023-3673.json","cwe_ids":["CWE-89"]},"references":[{"type":"WEB","url":"https://huntr.dev/bounties/46ca0934-5260-477b-9e86-7b16bb18d0a9"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/3xxx/CVE-2023-3673.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-3673"},{"type":"FIX","url":"https://github.com/pimcore/pimcore/commit/a06ce0abdba19ae0eefc38b035e677f8f0c2bce9"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}]}