CVE-2026-45260 | Pimcore up to 11.5.16/12.3.6 WebDAV Asset Endpoint WebDavController.php improper authorization
A vulnerability was found in Pimcore up to 11.5.16/12.3.6 and classified as critical. This issue affects some unknown processing of the file bundles/CoreBundle/src/Controller/WebDavController.php of the component WebDAV Asset Endpoint. Such manipulation leads to improper authorization.
This vulnerability is uniquely identified as CVE-2026-45260. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More