pimcore/admin-ui-classic-bundle vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-44741Highpimcore/admin-ui-classic-bundle: Pimcore Admin Classic Bundle Vulnerable to SQL Injection in Translation Grid Date Filter via Unsanitized Property ParameterCVE-2026-23495Mediumpimcore/admin-ui-classic-bundle: Pimcore's Admin Classic Bundle is Missing Function Level Authorization on "Predefined Properties" ListingCVE-2025-30166Lowpimcore/admin-ui-classic-bundle: Pimcore's Admin Classic Bundle allows HTML InjectionCVE-2025-24980Mediumpimcore/admin-ui-classic-bundle: Pimcore Admin Classic Bundle allows user enumerationGHSA-HQ76-662X-7MW4Highpimcore/data-importer: Pimcore includes vulnerable PHPOffice/PhpSpreadsheetCVE-2024-41109Mediumpimcore/admin-ui-classic-bundle: Pimcore vulnerable to disclosure of system and database information behind /admin firewallGHSA-JMH9-6RJQ-GJH9Mediumpimcore/admin-ui-classic-bundle: Vulnerable embedded jQuery VersionCVE-2024-25625Highpimcore/admin-ui-classic-bundle: Pimcore Host Header Injection in user invitation linkCVE-2024-24822Mediumpimcore/admin-ui-classic-bundle: Pimcore Admin Classic Bundle permissions are not getting checked when working with tagsCVE-2024-23648Highpimcore/admin-ui-classic-bundle: Host header injection in the password resetCVE-2024-23646Highpimcore/admin-ui-classic-bundle: SQL Injection in Admin download files as zipCVE-2023-49075Highpimcore/admin-ui-classic-bundle: Pimcore Admin UI has Two Factor Authentication disabled for non admin security firewallsCVE-2023-47636Mediumpimcore/admin-ui-classic-bundle: pimcore/admin-ui-classic-bundle Full Path Disclosure via re-export documentCVE-2023-46722Mediumpimcore/admin-ui-classic-bundle: Pimcore Admin Classic Bundle Cross-site Scripting (XSS) in PDF previewsCVE-2023-5844Mediumpimcore/admin-ui-classic-bundle: pimcore/admin-ui-classic-bundle Unverified Password ChangeCVE-2023-42817Mediumpimcore/admin-ui-classic-bundle: pimcore/admin-ui-classic-bundle Cross-site Scripting vulnerability in TranslationsCVE-2023-37280Mediumpimcore/admin-ui-classic-bundle: Pimcore admin UI vulnerable to Cross-site Scripting in 2 factor authentication setup page

Stop the waste.
Protect your environment with Kodem.