Cancan101

Name of the Vulnerable Software and Affected Versions: Pimcore versions prior to 11.5.4 Description: The issue allows authenticated users to craft a filter string that can cause a SQL injection. This is a problem with the Pimcore open source data and experience management platform. Recommendations: For versions prior to 11.5.4, update to version 11.5.4 to resolve the issue. As a temporary workaround, consider restricting access to filter string functionality until the update is applied.