CVE-2026-55212 | Pimcore up to 2025.4.5/2026.1.5 Studio API Class Definition Creation Endpoint create uid permission

SecurityVulns

A vulnerability has been found in Pimcore up to 2025.4.5/2026.1.5 and classified as critical. The affected element is an unknown function of the file /pimcore-studio/api/class/definition/configuration-view/detail/create of the component Studio API Class Definition Creation Endpoint. This manipulation of the argument uid causes permission issues.

This vulnerability is tracked as CVE-2026-55212. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More