Vulnerabilities > Pimcore > Pimcore > 6.7.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-09-15 | CVE-2021-39189 | Information Exposure Through Discrepancy vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 5.0 |
2021-09-01 | CVE-2021-39166 | Cross-site Scripting vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 3.5 |
2021-09-01 | CVE-2021-39170 | Improper Encoding or Escaping of Output vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 3.5 |
2021-08-18 | CVE-2021-37702 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 6.5 |
2021-07-09 | CVE-2021-23405 | SQL Injection vulnerability in Pimcore This affects the package pimcore/pimcore before 10.0.7. | 6.5 |
2021-02-18 | CVE-2021-23340 | Path Traversal vulnerability in Pimcore This affects the package pimcore/pimcore before 6.8.8. | 5.5 |
2020-12-03 | CVE-2020-26246 | Improper Preservation of Permissions vulnerability in Pimcore Pimcore is an open source digital experience platform. | 4.0 |
2020-10-30 | CVE-2020-7759 | SQL Injection vulnerability in Pimcore The package pimcore/pimcore from 6.7.2 and before 6.8.3 are vulnerable to SQL Injection in data classification functionality in ClassificationstoreController. | 6.5 |