[GHSA-332x-r494-54fq] Pimcore has a WordExport Authorization Bypass for Unauthorized Document Export#7900
Conversation
|
Hi there @kingjia90! A community member has suggested an improvement to your security advisory. If approved, this change will affect the global advisory listed at github.com/advisories. It will not affect the version listed in your project repository. This change will be reviewed by our Security Curation Team. If you have thoughts or feedback, please share them in a comment here! If this PR has already been closed, you can start a new community contribution for this advisory |
There was a problem hiding this comment.
Pull request overview
Note
Copilot was unable to run its full agentic suite in this review.
Updates the advisory metadata and affected version boundaries for GHSA-332x-r494-54fq to reflect a different fixed release line.
Changes:
- Bumped the
modifiedtimestamp by 1 second. - Changed the
fixedversion from12.3.7to11.5.17. - Updated
last_known_affected_version_rangefrom<= 12.3.6to<= 11.5.16.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| }, | ||
| { | ||
| "fixed": "12.3.7" | ||
| "fixed": "11.5.17" |
| ], | ||
| "database_specific": { | ||
| "last_known_affected_version_range": "<= 12.3.6" | ||
| "last_known_affected_version_range": "<= 11.5.16" |
github-actions
Bot
changed the base branch from
main
to
kingjia90/advisory-improvement-7900
|
Hi there @kingjia90! A community member has suggested an improvement to your security advisory. If approved, this change will affect the global advisory listed at github.com/advisories. It will not affect the version listed in your project repository. This change will be reviewed by our Security Curation Team. If you have thoughts or feedback, please share them in a comment here! If this PR has already been closed, you can start a new community contribution for this advisory |
Updates
Comments
a lower version with the security fix for LTS purposes got released after first publish