Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pimcore pimcore vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-37702
Pimcore is an open source data & experience management platform. Prior to version 10.1.1, Data Object CSV import allows formular injection. The problem is patched in 10.1.1. Aside from upgrading, one may apply the patch manually as a workaround.
Pimcore Pimcore
4.8
CVSSv3
CVE-2023-1517
Cross-site Scripting (XSS) - DOM in GitHub repository pimcore/pimcore before 10.5.19.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-1704
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.5.20.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-2322
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.5.21.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-2327
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.5.21.
Pimcore Pimcore
6.5
CVSSv3
CVE-2023-2336
Path Traversal in GitHub repository pimcore/pimcore before 10.5.21.
Pimcore Pimcore
8.8
CVSSv3
CVE-2023-2338
SQL Injection in GitHub repository pimcore/pimcore before 10.5.21.
Pimcore Pimcore
8.1
CVSSv3
CVE-2022-31092
Pimcore is an Open Source Data & Experience Management Platform. Pimcore offers developers listing classes to make querying data easier. This listing classes also allow to order or group the results based on one or more columns which should be quoted by default. The actual is...
Pimcore Pimcore
6.1
CVSSv3
CVE-2021-4084
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-2730
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.3.3.
Pimcore Pimcore
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »