Vulnerabilities > Pimcore > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-08 | CVE-2022-0509 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.3.1. | 3.5 |
| 2022-01-27 | CVE-2022-0348 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2. | 3.5 |
| 2022-01-26 | CVE-2022-0251 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.2.10. | 3.5 |
| 2022-01-20 | CVE-2022-0285 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.9. | 3.5 |
| 2022-01-18 | CVE-2022-0260 | Cross-site Scripting vulnerability in Pimcore Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.2.7. | 3.5 |
| 2022-01-17 | CVE-2022-0257 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 3.5 |
| 2022-01-17 | CVE-2022-0256 | Cross-site Scripting vulnerability in Pimcore pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 3.5 |
| 2021-09-01 | CVE-2021-39170 | Improper Encoding or Escaping of Output vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 3.5 |
| 2021-09-01 | CVE-2021-39166 | Cross-site Scripting vulnerability in Pimcore Pimcore is an open source data & experience management platform. | 3.5 |
| 2018-08-24 | CVE-2018-14059 | Cross-site Scripting vulnerability in Pimcore Pimcore allows XSS via Users, Assets, Data Objects, Video Thumbnails, Image Thumbnails, Field-Collections, Objectbrick, Classification Store, Document Types, Predefined Properties, Predefined Asset Metadata, Quantity Value, and Static Routes functions. | 3.5 |