Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

Pimcore E-commerce FrameworkPimcore Vulnerable to SQL Injection in getRelationFilterCondition

medium
6.3
EPSS
0.01%
First published (updated )
CVE-2025-27617

Pimcore E-commerce FrameworkPimcore Search Document cross site scripting

medium
5.1
First published (updated )
CVE-2024-11954

Pimcore E-commerce FrameworkChange-Password via Portal-Profile sets PimcoreBackendUser password without hashing

high
8.7
First published (updated )
CVE-2024-49370

composer/pimcore/pimcorePimcore Vulnerable to Flooding Server with Thumbnail files

high
7.5
First published (updated )
CVE-2024-32871

composer/pimcore/ecommerce-framework-bundleecommerce-framework-bundle is the Pimcore Ecommerce Framework Bundle. An authenticated and unauthori…

medium
4.3
EPSS
0.05%
First published (updated )
CVE-2024-21665

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore E-commerce FrameworkPimcore missing token/header to prevent CSRF

medium
6.5
First published (updated )
CVE-2023-49076

composer/pimcore/pimcoreSQL Injection in Admin Grid Filter API in Pimcore

high
8.8
First published (updated )
CVE-2023-47637

composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
5.4
EPSS
0.09%
First published (updated )
CVE-2023-5873

composer/pimcore/pimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore

medium
6.4
First published (updated )
CVE-2023-4453

composer/pimcore/pimcorePimcore Path Traversal Vulnerability in AssetController:importServerFilesAction

high
8.8
First published (updated )
CVE-2023-38708

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/pimcore/pimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore

medium
6.1
First published (updated )
CVE-2023-3822

composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
6.1
First published (updated )
CVE-2023-3821

composer/pimcore/pimcoreSQL Injection in pimcore/pimcore

high
7.2
EPSS
0.05%
First published (updated )
CVE-2023-3820

composer/pimcore/pimcoreExposure of Sensitive Information to an Unauthorized Actor in pimcore/pimcore

high
7.6
EPSS
0.07%
First published (updated )
CVE-2023-3819

composer/pimcore/pimcoreSQL Injection in pimcore/pimcore

high
7.2
First published (updated )
CVE-2023-3673

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore E-commerce FrameworkPath Traversal: '\..\filename' in pimcore/pimcore

high
8.8
First published (updated )
CVE-2023-2984

Pimcore E-commerce FrameworkPrivilege Defined With Unsafe Actions in pimcore/pimcore

high
8.8
First published (updated )
CVE-2023-2983

composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
6.3
First published (updated )
CVE-2023-2730

composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
5.7
First published (updated )
CVE-2023-2630

Pimcore E-commerce FrameworkCross-site Scripting (XSS) - DOM in pimcore/pimcore

medium
6.8
First published (updated )
CVE-2023-2614

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore E-commerce FrameworkCross-site Scripting (XSS) - Reflected in pimcore/pimcore

medium
6.8
First published (updated )
CVE-2023-2615

Pimcore E-commerce FrameworkCross-site Scripting (XSS) - Generic in pimcore/pimcore

medium
6.8
First published (updated )
CVE-2023-2616

composer/pimcore/pimcorePimcore Path Traversal Vulnerability in AdminBundle/Controller/Reports/CustomReportController.php

high
7.5
First published (updated )
CVE-2023-30855

composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
6.3
First published (updated )
CVE-2023-2361

composer/pimcore/pimcoreStored Cross-site Scripting (XSS) in pimcore/pimcore

medium
4.8
First published (updated )
CVE-2023-2332

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/pimcore/pimcorePimcore Arbitrary File Read in Admin JS CSS files

medium
4.9
First published (updated )
CVE-2023-30852

composer/pimcore/pimcorePimcore SQL Injection Vulnerability in Admin Translations API

high
8.8
First published (updated )
CVE-2023-30850

composer/pimcore/pimcorePimcore vulnerable to SQL Injection in Translation Export API

high
8.8
First published (updated )
CVE-2023-30849

composer/pimcore/pimcorePimcore SQL Injection Vulnerability in Admin Search Find API

high
8.8
First published (updated )
CVE-2023-30848

composer/pimcore/pimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore

high
7.3
First published (updated )
CVE-2023-2341

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203