Vulnerabilities > Pimcore > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-09-25 CVE-2023-42817 Unspecified vulnerability in Pimcore Admin Classic Bundle
Pimcore admin-ui-classic-bundle provides a Backend UI for Pimcore.
network
low complexity
pimcore
5.4
2023-08-21 CVE-2023-4453 Unspecified vulnerability in Pimcore
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.6.8.
network
low complexity
pimcore
5.4
2023-08-03 CVE-2023-4145 Unspecified vulnerability in Pimcore Customer Data Framework
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/customer-data-framework prior to 3.4.2.
network
low complexity
pimcore
5.4
2023-07-21 CVE-2023-3819 Unspecified vulnerability in Pimcore
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pimcore/pimcore prior to 10.6.4.
network
low complexity
pimcore
6.5
2023-07-21 CVE-2023-3821 Unspecified vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.6.4.
network
low complexity
pimcore
5.4
2023-07-21 CVE-2023-3822 Unspecified vulnerability in Pimcore
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.6.4.
network
low complexity
pimcore
6.1
2023-07-11 CVE-2023-37280 Unspecified vulnerability in Pimcore Admin Classic Bundle 1.0.0/1.0.1/1.0.2
Pimcore Admin Classic Bundle provides a Backend UI for Pimcore based on the ExtJS framework.
network
low complexity
pimcore
6.1
2023-07-10 CVE-2023-3574 Unspecified vulnerability in Pimcore Customer Management Framework
Improper Authorization in GitHub repository pimcore/customer-data-framework prior to 3.4.1.
network
low complexity
pimcore
6.5
2023-05-25 CVE-2023-2881 Insufficiently Protected Credentials vulnerability in Pimcore Customer-Data-Framework
Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10.
network
low complexity
pimcore CWE-522
4.9
2023-05-16 CVE-2023-2730 Unspecified vulnerability in Pimcore
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.3.3.
network
low complexity
pimcore
5.4