[pimcore/pimcore] Cross-site Scripting in Pimcore

Pimcore version 10.3.2 and prior is vulnerable to stored cross-site scripting. A patch is available and anticipated to be part of version 10.3.3.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-0831
• https://github.com/pimcore/pimcore/commit/e786fd44aac46febdbf916ed6c328fbe645d80bf
• https://huntr.dev/bounties/4152e3a7-27a1-49eb-a6eb-a57506af104f
• https://github.com/advisories/GHSA-q67f-3jq4-mww2