Vulnerabilities > Pimcore

DATE CVE VULNERABILITY TITLE RISK
2023-01-16 CVE-2023-0323 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.14.
network
low complexity
pimcore CWE-79
5.4
5.4
2022-10-27 CVE-2022-39365 Code Injection vulnerability in Pimcore
Pimcore is an open source data and experience management platform.
network
low complexity
pimcore CWE-94
critical
 9.8
9.8
2022-06-27 CVE-2022-31092 SQL Injection vulnerability in Pimcore
Pimcore is an Open Source Data & Experience Management Platform.
network
pimcore CWE-89
6.8
6.8
2022-04-22 CVE-2022-1429 SQL Injection vulnerability in Pimcore
SQL injection in GridHelperService.php in GitHub repository pimcore/pimcore prior to 10.3.6.
network
low complexity
pimcore CWE-89
5.0
5.0
2022-04-14 CVE-2022-1351 Cross-site Scripting vulnerability in Pimcore
Stored XSS in Tooltip in GitHub repository pimcore/pimcore prior to 10.4.
network
pimcore CWE-79
3.5
3.5
2022-04-13 CVE-2022-1339 SQL Injection vulnerability in Pimcore
SQL injection in ElementController.php in GitHub repository pimcore/pimcore prior to 10.3.5.
network
low complexity
pimcore CWE-89
5.0
5.0
2022-04-08 CVE-2022-1219 SQL Injection vulnerability in Pimcore
SQL injection in RecyclebinController.php in GitHub repository pimcore/pimcore prior to 10.3.5.
network
low complexity
pimcore CWE-89
5.0
5.0
2022-03-24 CVE-2022-0955 Cross-site Scripting vulnerability in Pimcore Data-Hub
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/data-hub prior to 1.2.4.
network
pimcore CWE-79
3.5
3.5
2022-03-16 CVE-2022-0705 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.
network
pimcore CWE-79
3.5
3.5
2022-03-16 CVE-2022-0704 Cross-site Scripting vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.
network
pimcore CWE-79
3.5
3.5