Filter

Software

pimcore pimcore
118
pimcore admin-ui-classic-bundle
10
pimcore customer management framework
7
pimcore customer data framework
3
pimcore adminbundle
1
pimcore core
1
pimcore data-hub
1
pimcore e-commerce framework
1
pimcore perspective editor
1

Pimcore PimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore

medium
5.4
First published (updated )
CVE-2023-1703

Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
5.4
First published (updated )
CVE-2023-1704

Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore

medium
5.4
First published (updated )
CVE-2023-1701

Pimcore PimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore

medium
5.4
First published (updated )
CVE-2023-1702

Pimcore admin-ui-classic-bundleUser enumeration in pimcore/admin-ui-classic-bundle

medium
6.9
EPSS
0.04%
First published (updated )
CVE-2025-24980

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore Perspective EditorPimcore Perspective Editor vulnerable to Cross-site Scripting in perspective name

medium
6.1
First published (updated )
CVE-2023-28850

Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore

medium
6.1
First published (updated )
CVE-2023-2339

Pimcore PimcorePimcore SQL Injection Vulnerability in Admin Translations API

high
8.8
First published (updated )
CVE-2023-30850

Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
6.3
First published (updated )
CVE-2023-2361

Pimcore PimcoreCross-site Scripting (XSS) - DOM in pimcore/pimcore

medium
5.4
First published (updated )
CVE-2023-2343

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore PimcorePimcore SQL Injection Vulnerability in Admin Search Find API

high
8.8
First published (updated )
CVE-2023-30848

Pimcore PimcorePimcore Arbitrary File Read in Admin JS CSS files

medium
4.9
First published (updated )
CVE-2023-30852

Pimcore PimcorePimcore Path Traversal Vulnerability in AdminBundle/Controller/Reports/CustomReportController.php

high
7.5
First published (updated )
CVE-2023-30855

Pimcore Customer Data FrameworkPimcore customer-data-framework list sql injection

high
7.2
First published (updated )
CVE-2024-11956

Pimcore PimcorePimcore Search Document cross site scripting

medium
5.1
First published (updated )
CVE-2024-11954

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore PimcoreCross-site Scripting (XSS) - DOM in pimcore/pimcore

medium
6.8
First published (updated )
CVE-2023-2614

Pimcore PimcoreCross-site Scripting (XSS) - Reflected in pimcore/pimcore

medium
6.8
First published (updated )
CVE-2023-2615

Pimcore PimcoreCross-site Scripting (XSS) - Generic in pimcore/pimcore

medium
6.8
First published (updated )
CVE-2023-2616

Pimcore Customer Management FrameworkImproper Neutralization of Formula Elements in a CSV File in pimcore/customer-data-framework

high
7.8
First published (updated )
CVE-2023-2629

Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
5.7
First published (updated )
CVE-2023-2630

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore Customer Management FrameworkPimcore vulnerable to Business Logic Errors in Customer automation rules

medium
4.3
First published (updated )
CVE-2023-32075

composer/pimcore/customer-management-framework-bundleCross-site Scripting (XSS) - Stored in pimcore/customer-data-framework

medium
6.5
First published (updated )
CVE-2023-4145

Pimcore PimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
6.3
First published (updated )
CVE-2023-2730

Pimcore Customer Management FrameworkSQL Injection in pimcore/customer-data-framework

high
7.2
First published (updated )
CVE-2023-2756

composer/pimcore/customer-management-framework-bundleStoring Passwords in a Recoverable Format in pimcore/customer-data-framework

medium
6.7
First published (updated )
CVE-2023-2881

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Pimcore PimcorePath Traversal: '\..\filename' in pimcore/pimcore

high
8.8
First published (updated )
CVE-2023-2984

Pimcore PimcorePrivilege Defined With Unsafe Actions in pimcore/pimcore

high
8.8
First published (updated )
CVE-2023-2983

composer/pimcore/pimcoreCross-site Scripting (XSS) - Stored in pimcore/pimcore

medium
5.4
EPSS
0.09%
First published (updated )
CVE-2023-5873

composer/pimcore/admin-ui-classic-bundleUnverified Password Change in pimcore/admin-ui-classic-bundle

high
7.2
EPSS
0.05%
First published (updated )
CVE-2023-5844

Pimcore CoreExcessive Data Query Operations in a Large Data Table in pimcore/demo

medium
6.5
First published (updated )
CVE-2023-5192

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203