Vulnerabilities > Pimcore
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-27 | CVE-2022-0348 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2. | 5.4 |
| 2022-01-26 | CVE-2022-0251 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.2.10. | 5.4 |
| 2022-01-20 | CVE-2022-0285 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.9. | 5.4 |
| 2022-01-18 | CVE-2021-4146 | Unspecified vulnerability in Pimcore Business Logic Errors in GitHub repository pimcore/pimcore prior to 10.2.6. | 4.3 |
| 2022-01-18 | CVE-2022-0262 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.7. | 6.1 |
| 2022-01-18 | CVE-2022-0263 | Unrestricted Upload of File with Dangerous Type vulnerability in Pimcore Unrestricted Upload of File with Dangerous Type in Packagist pimcore/pimcore prior to 10.2.7. | 7.8 |
| 2022-01-18 | CVE-2022-0260 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.2.7. | 5.4 |
| 2022-01-17 | CVE-2022-0256 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 5.4 |
| 2022-01-17 | CVE-2022-0257 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 5.4 |
| 2022-01-17 | CVE-2022-0258 | SQL Injection vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command | 8.8 |