pimcore/pimcore vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2023-30849Highpimcore/pimcore: SQL Injection in Translation Export APICVE-2023-30848Highpimcore/pimcore: SQL Injection in Admin Search Find APICVE-2023-1703Mediumpimcore/pimcore: pimcore is vulnerable to cross-site scripting in Composite indices key fieldCVE-2023-1701Mediumpimcore/pimcore: Pimcore vulnerable to Reflected XSS in Predefined Properties module in SettingsCVE-2023-1702Mediumpimcore/pimcore: Pimcore Cross-site Scripting in Predefined Asset Metadata module in SettingsCVE-2023-1704Mediumpimcore/pimcore: pimcore is vulnerable to cross-site scripting in translate moduleCVE-2023-28438Mediumpimcore/pimcore: Pimcore vulnerable to improper quoting of filters in Custom ReportsCVE-2023-1578Mediumpimcore/pimcore: Pimcore Remote Code Execution vulnerability in Search functionCVE-2023-28429Mediumpimcore/pimcore: Pimcore has Cross-site Scripting vulnerability in DataObject tooltip fieldCVE-2023-1515Mediumpimcore/pimcore: Pimcore vulnerable to Cross-site Scripting (XSS) in RedirectsCVE-2023-1517Mediumpimcore/pimcore: Pimcore has Cross site Scripting vulnerability in Schedule tab of DocumentsCVE-2023-28108Highpimcore/pimcore: Improper quoting of columns when calling methods "getByUuid" & "exists" on UUID ModelCVE-2023-28106Mediumpimcore/pimcore: Cross-site Scripting (XSS) in UrlSlug Data typeGHSA-2XPM-CMVW-3JCCMediumpimcore/pimcore: Reflected XSS in Application Logger moduleCVE-2023-1429Mediumpimcore/pimcore: Cross-site Scripting (XSS) in Document TypesGHSA-RRWM-8WQM-GWGVMediumpimcore/pimcore: Cross-site Scripting (XSS) - stored in Print DocumentsCVE-2023-1312Mediumpimcore/pimcore: pimcore is vulnerable to cross-site scriptingCVE-2023-1286Mediumpimcore/pimcore: Cross-site Scripting (XSS) in pimcore/pimcoreCVE-2023-1116Mediumpimcore/pimcore: Pimcore vulnerable to Cross Site Scripting in Email BlacklistCVE-2023-1117Mediumpimcore/pimcore: Pimcore vulnerable to Cross Site Scripting in image/video thumbnail configCVE-2023-1115Mediumpimcore/pimcore: Pimcore vulnerable to Cross Site Scripting in Documents Link EditableCVE-2023-1067Mediumpimcore/pimcore: Pimcore vulnerable to Cross-site ScriptingGHSA-76R7-H46W-463RMediumpimcore/pimcore: Cross Site Scripting (XSS) in Model\DataObject\Data\UrlSlugCVE-2023-0827Mediumpimcore/pimcore: Cross-site Scripting in pimcoreCVE-2023-25240Highpimcore/pimcore: SameSite Attribute vulnerability in pimCore

Stop the waste.
Protect your environment with Kodem.