๐Ÿ” CVE Alert

CVE-2026-44739

HIGH 8.7

Pimcore: SQL Injection in Custom Reports Column Configuration

CVSS Score
8.7
EPSS Score
0.0%
EPSS Percentile
0th

Pimcore is an Open Source Data & Experience Management Platform. Prior to 11.5.17 (LTS) and 12.3.6, the columnConfigAction endpoint in bundles/CustomReportsBundle/src/Controller/Reports/CustomReportController.php passes malicious SQL configuration through CustomReportController:columnConfigAction, SqlAdapter::getColumns, SqlAdapter::buildQueryString, and Db::fetchAssociative(), allowing an attacker with the reports_config permission to use arbitrary SELECT queries, UNION statements, dangerous database functions, and error-based SQL injection to exfiltrate or manipulate database data. This issue is fixed in versions 11.5.17 (LTS) and 12.3.6.

CWE CWE-89
Vendor pimcore
Product pimcore
Published Jul 17, 2026
Stay Ahead of the Next One

Get instant alerts for pimcore pimcore

Be the first to know when new high vulnerabilities affecting pimcore pimcore are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
High
Availability
None

Affected Versions

pimcore / pimcore
< 11.5.17 >= 12.0.0, < 12.3.6

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/pimcore/pimcore/security/advisories/GHSA-3234-gxc3-pq6f github.com: https://github.com/pimcore/pimcore/pull/19098 github.com: https://github.com/pimcore/pimcore/commit/3fd7733464f464e58ffa49ed91550c1a3f9535f2 github.com: https://github.com/pimcore/pimcore/releases/tag/v12.3.6