Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pimcore vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-0348
Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore before 10.2.
Pimcore Pimcore
5.4
CVSSv3
CVE-2022-0509
Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore before 10.3.1.
Pimcore Pimcore
5.4
CVSSv3
CVE-2022-0510
Cross-site Scripting (XSS) - Reflected in Packagist pimcore/pimcore before 10.3.1.
Pimcore Pimcore
6.4
CVSSv3
CVE-2022-0565
Cross-site Scripting in Packagist pimcore/pimcore before 10.3.1.
Pimcore Pimcore
5.4
CVSSv3
CVE-2022-0251
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.2.10.
Pimcore Pimcore
8.8
CVSSv3
CVE-2018-14057
Pimcore prior to 5.3.0 allows remote malicious users to conduct cross-site request forgery (CSRF) attacks by leveraging validation of the X-pimcore-csrf-token anti-CSRF token only in the "Settings > Users / Roles" function.
Pimcore Pimcore
1 EDB exploit
6.5
CVSSv3
CVE-2018-14058
Pimcore prior to 5.3.0 allows SQL Injection via the REST web service API.
Pimcore Pimcore
1 EDB exploit
5.4
CVSSv3
CVE-2022-0893
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.4.0.
Pimcore Pimcore
5.4
CVSSv3
CVE-2022-0894
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.4.0.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-4453
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore before 10.6.8.
Pimcore Pimcore
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »