CVE-2026-5394 | Pimcore 12.3.3 DataObject sql injection

April 27, 2026 Yanac

A vulnerability was found in Pimcore 12.3.3. It has been rated as critical. Affected by this issue is the function DataObject. Performing a manipulation results in sql injection.

This vulnerability is reported as CVE-2026-5394. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More