CVE-2019-18656: Cross-site Scripting
(updated )
Pimcore has XSS in the translations grid because bundles/AdminBundle/Resources/public/js/pimcore/settings/translations.js
mishandles certain HTML elements.
References
Detect and mitigate CVE-2019-18656 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →