Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. Navigating to `/admin/index/statistics` with a logged in Pimcore user exposes information about the Pimcore installation, PHP version, MYSQL version, installed bundles and all database tables and their row count in the system. This vulnerability is fixed in 1.5.2, 1.4.6, and 1.3.10.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-07-30T14:43:14.407Z
Updated: 2024-08-02T04:46:52.472Z
Reserved: 2024-07-15T15:53:28.321Z
Link: CVE-2024-41109
Vulnrichment
Updated: 2024-08-02T04:46:52.472Z
NVD
Status : Awaiting Analysis
Published: 2024-07-30T15:15:12.890
Modified: 2024-07-31T12:57:02.300
Link: CVE-2024-41109
Redhat
No data.