Vulnerabilities > Pimcore
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-17 | CVE-2022-0257 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 3.5 |
| 2022-01-17 | CVE-2022-0258 | SQL Injection vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command | 6.5 |
| 2021-12-21 | CVE-2021-4139 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 6.0 |
| 2021-12-10 | CVE-2021-4084 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 4.3 |
| 2021-12-10 | CVE-2021-4081 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 4.3 |
| 2021-12-10 | CVE-2021-4082 | Cross-Site Request Forgery (CSRF) vulnerability in Pimcore pimcore is vulnerable to Cross-Site Request Forgery (CSRF) | 4.3 |
| 2021-09-15 | CVE-2021-39189 | Information Exposure Through Discrepancy vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 5.0 |
| 2021-09-01 | CVE-2021-39166 | Cross-site Scripting vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 3.5 |
| 2021-09-01 | CVE-2021-39170 | Improper Encoding or Escaping of Output vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 3.5 |
| 2021-08-18 | CVE-2021-37702 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 6.5 |