Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pimcore vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-0258
pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command
Pimcore Pimcore
7.8
CVSSv3
CVE-2022-0263
Unrestricted Upload of File with Dangerous Type in Packagist pimcore/pimcore before 10.2.7.
Pimcore Pimcore
6.5
CVSSv3
CVE-2018-14058
Pimcore prior to 5.3.0 allows SQL Injection via the REST web service API.
Pimcore Pimcore
1 EDB exploit
5.4
CVSSv3
CVE-2023-0323
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.5.14.
Pimcore Pimcore
4.8
CVSSv3
CVE-2023-1517
Cross-site Scripting (XSS) - DOM in GitHub repository pimcore/pimcore before 10.5.19.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-5873
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 11.1.0.
Pimcore Pimcore
5.4
CVSSv3
CVE-2023-1067
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore before 10.5.18.
Pimcore Pimcore
6.1
CVSSv3
CVE-2021-4081
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Pimcore Pimcore
4.3
CVSSv3
CVE-2021-4082
pimcore is vulnerable to Cross-Site Request Forgery (CSRF)
Pimcore Pimcore
8.8
CVSSv3
CVE-2023-30848
Pimcore is an open source data and experience management platform. Prior to version 10.5.21, the admin search find API has a SQL injection vulnerability. Users should upgrade to version 10.5.21 to receive a patch or, as a workaround, apply the patch manually.
Pimcore Pimcore
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »