Vulnerabilities > Pimcore

DATE CVE VULNERABILITY TITLE RISK
2022-04-22 CVE-2022-1429 SQL Injection vulnerability in Pimcore
SQL injection in GridHelperService.php in GitHub repository pimcore/pimcore prior to 10.3.6.
network
low complexity
pimcore CWE-89
5.0
2022-04-14 CVE-2022-1351 Cross-site Scripting vulnerability in Pimcore
Stored XSS in Tooltip in GitHub repository pimcore/pimcore prior to 10.4.
network
pimcore CWE-79
3.5
2022-04-13 CVE-2022-1339 SQL Injection vulnerability in Pimcore
SQL injection in ElementController.php in GitHub repository pimcore/pimcore prior to 10.3.5.
network
low complexity
pimcore CWE-89
5.0
2022-04-08 CVE-2022-1219 SQL Injection vulnerability in Pimcore
SQL injection in RecyclebinController.php in GitHub repository pimcore/pimcore prior to 10.3.5.
network
low complexity
pimcore CWE-89
5.0
2022-03-24 CVE-2022-0955 Cross-site Scripting vulnerability in Pimcore Data-Hub
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/data-hub prior to 1.2.4.
network
pimcore CWE-79
3.5
2022-03-16 CVE-2022-0705 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.
network
pimcore CWE-79
3.5
2022-03-16 CVE-2022-0704 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.
network
pimcore CWE-79
3.5
2022-03-16 CVE-2022-0911 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.
network
pimcore CWE-79
3.5
2022-03-15 CVE-2022-0893 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.
network
pimcore CWE-79
3.5
2022-03-15 CVE-2022-0894 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.
network
pimcore CWE-79
3.5