Filter
Pimcore PimcoreChange-Password via Portal-Profile sets PimcoreBackendUser password without hashing
8.7
First published (updated )
composer/pimcore/pimcorePimcore Vulnerable to Flooding Server with Thumbnail files
7.5
First published (updated )
Pimcore PimcorePimcore missing token/header to prevent CSRF
6.5
First published (updated )
composer/pimcore/pimcoreSQL Injection in Admin Grid Filter API in Pimcore
8.8
First published (updated )
composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
5.4
EPSS
0.09%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
6.4
First published (updated )
composer/pimcore/pimcorePimcore Path Traversal Vulnerability in AssetController:importServerFilesAction
8.8
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
6.1
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
6.1
First published (updated )
Pimcore PimcoreSQL Injection in pimcore/pimcore
7.2
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcoreExposure of Sensitive Information to an Unauthorized Actor in pimcore/pimcore
7.6
EPSS
0.07%
First published (updated )
Pimcore PimcorePath Traversal: '\..\filename' in pimcore/pimcore
8.8
First published (updated )
Pimcore PimcorePrivilege Defined With Unsafe Actions in pimcore/pimcore
8.8
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
6.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
5.7
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - DOM in pimcore/pimcore
6.8
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
6.8
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore
6.8
First published (updated )
Pimcore PimcorePimcore Path Traversal Vulnerability in AdminBundle/Controller/Reports/CustomReportController.php
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
6.3
First published (updated )
composer/pimcore/pimcoreStored Cross-site Scripting (XSS) in pimcore/pimcore
4.8
First published (updated )
Pimcore PimcorePimcore Arbitrary File Read in Admin JS CSS files
4.9
First published (updated )
Pimcore PimcorePimcore SQL Injection Vulnerability in Admin Translations API
8.8
First published (updated )
Pimcore PimcorePimcore vulnerable to SQL Injection in Translation Export API
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcorePimcore SQL Injection Vulnerability in Admin Search Find API
8.8
First published (updated )
composer/pimcore/pimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore
7.3
First published (updated )
composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
6.1
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
6.1
First published (updated )
composer/pimcore/pimcoreSQL Injection in pimcore/pimcore
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/pimcore/pimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - DOM in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
6.8
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcorePimcore vulnerable to improper quoting of filters in Custom Reports
8
First published (updated )
Pimcore PimcorePimcore has Cross-site Scripting vulnerability in DataObject tooltip field
6.1
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - DOM in pimcore/pimcore
4.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
5.4
First published (updated )
Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore
5.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.