The Pimcore Platform, used by over 100,000 clients across 56 countries, has two vulnerabilities that can be exploited with a single GET request. The first vulnerability is a path traversal issue in the create-csv endpoint, which allows an attacker to control the extension and folder path of a CSV file. The second vulnerability is an SQL injection vulnerability in the getData function, which enables an attacker to inject malicious SQL code into the query. By combining these two vulnerabilities, an attacker can create a malicious link that will deploy a web shell on the server. Both vulnerabilities were fixed in Pimcore version 10.5.19.