pimcore/pimcore vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2023-23937Mediumpimcore/pimcore: Pimcore contains Unrestricted Upload of File with Dangerous TypeCVE-2023-0323Mediumpimcore/pimcore: pimcore is vulnerable to cross-site scripting via "title field " in data objectsCVE-2022-39365Criticalpimcore/pimcore: RCE vulnerability in Pimcore/Mail & Dynamic Text LayoutCVE-2022-3255Mediumpimcore/pimcore: Pimcore vulnerable to cross site scriptingCVE-2022-3211Mediumpimcore/pimcore: Pimcore vulnerable to stored stored Cross-site Scripting via`properties` when creating new usersCVE-2022-2796Mediumpimcore/pimcore: Pimcore Cross-site Scripting (XSS)CVE-2022-31092Highpimcore/pimcore: Improper quoting of columns when using setOrderBy() or setGroupBy() on listing classes in PimcoreCVE-2019-18985Criticalpimcore/pimcore: Pimcore 2FA Vulnerable to Brute ForcingCVE-2019-18982Mediumpimcore/pimcore: Pimcore Cross-site Scripting (XSS) vulnerabilityCVE-2019-18986Highpimcore/pimcore: Pimcore Discloses Usernames In UseCVE-2019-18981Criticalpimcore/pimcore: Pimcore Access Control IssuesCVE-2019-18656Mediumpimcore/pimcore: Pimcore XSS VulnerabilityCVE-2019-16317Highpimcore/pimcore: Pimcore RCE via PHAR uploadCVE-2019-16318Highpimcore/pimcore: Pimcore Unrestricted Upload of File with Dangerous TypeCVE-2014-2921Highpimcore/pimcore: Pimcore Vulnerable to PHP Object Injection AttacksCVE-2018-14058Mediumpimcore/pimcore: Pimcore SQLi VulnerabilityCVE-2018-14057Highpimcore/pimcore: Pimcore CSRF VulnerabilityCVE-2018-14059Mediumpimcore/pimcore: Pimcore XSS VulnerabilityCVE-2019-10867Highpimcore/pimcore: Pimcore Unserialize Remote Code ExecutionCVE-2022-1429Highpimcore/pimcore: SQL Injection found in PimcoreCVE-2022-1351Mediumpimcore/pimcore: Cross-site Scripting in PimcoreCVE-2022-1339Highpimcore/pimcore: SQL Injection in PimcoreCVE-2022-1219Highpimcore/pimcore: SQL Injection in PimcoreCVE-2022-0911Mediumpimcore/pimcore: Cross-site Scripting in PimcoreCVE-2022-0704Mediumpimcore/pimcore: Cross-site Scripting in Pimcore

Stop the waste.
Protect your environment with Kodem.