Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pimcore vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-3822
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore before 10.6.4.
Pimcore Pimcore
7.5
CVSSv3
CVE-2022-1219
SQL injection in RecyclebinController.php in GitHub repository pimcore/pimcore before 10.3.5. This vulnerability is capable of steal the data
Pimcore Pimcore
6.5
CVSSv3
CVE-2022-0665
Path Traversal in GitHub repository pimcore/pimcore before 10.3.2.
Pimcore Pimcore
5.4
CVSSv3
CVE-2022-0704
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.4.0.
Pimcore Pimcore
5.4
CVSSv3
CVE-2022-0705
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.4.0.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-2361
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.5.21.
Pimcore Pimcore
6.1
CVSSv3
CVE-2023-28429
Pimcore is an open source data and experience management platform. Versions before 10.5.19 have an unsecured tooltip field in DataObject class definition. This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account t...
Pimcore Pimcore
8
CVSSv3
CVE-2023-28438
Pimcore is an open source data and experience management platform. Prior to version 10.5.19, since a user with 'report' permission can already write arbitrary SQL queries and given the fact that this endpoint is using the GET method (no CSRF protection), an attacker can...
Pimcore Pimcore
5.4
CVSSv3
CVE-2022-3211
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.5.6.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-0827
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 1.5.17.
Pimcore Pimcore
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »