-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AIMiggo AIRoot Cause AnalysisThe critical vulnerability was in LogController's handling of sorting parameters. The commit diff shows the vulnerable line used $sortingSettings['orderKey'] directly in orderBy() without escaping. SQL injection occurs when attackers control ORDER BY clauses through unquoted column names. The patch adds $db->quoteIdentifier() to sanitize this input, confirming the vulnerability. Other changes (isValidOrderKey methods) indicate defense-in-depth improvements but the primary exploit path was through unquoted orderKey in this controller.
| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| pimcore/pimcore | composer | < 10.5.24 | 10.5.24 |