Vulnerabilities > Pimcore > Pimcore > 10.2.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-04 | CVE-2022-0831 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.3.3. | 3.5 |
| 2022-03-04 | CVE-2022-0832 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.3.3. | 3.5 |
| 2022-02-22 | CVE-2022-0665 | Path Traversal vulnerability in Pimcore Path Traversal in GitHub repository pimcore/pimcore prior to 10.3.2. | 5.5 |
| 2022-02-14 | CVE-2022-0565 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting in Packagist pimcore/pimcore prior to 10.3.1. | 6.4 |
| 2022-02-08 | CVE-2022-0510 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Reflected in Packagist pimcore/pimcore prior to 10.3.1. | 3.5 |
| 2022-02-08 | CVE-2022-0509 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.3.1. | 3.5 |
| 2022-01-20 | CVE-2022-0285 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.9. | 3.5 |
| 2022-01-17 | CVE-2022-0256 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 3.5 |
| 2022-01-17 | CVE-2022-0257 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 3.5 |
| 2022-01-17 | CVE-2022-0258 | SQL Injection vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command | 6.5 |