Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
packagist pimcore/pimcore Security Advisories
Loading...
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS00ZjI1LTJ4MmMtdmc2ds4AAyhj
pimcore is vulnerable to cross-site scripting in Composite indices key fieldEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS05NmhwLTM4d3gtajN3Y84AAx57
Pimcore vulnerable to Cross Site Scripting in Email BlacklistEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS1xeGN3LXJmNHYtaHAyNs4AAx56
Pimcore vulnerable to Cross Site Scripting in image/video thumbnail configEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 9 months ago
GSA_kwCzR0hTQS13cXI2LTU3cW0taGhyNc4AAu-u
Pimcore vulnerable to cross site scriptingEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 9 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 9 months ago
GSA_kwCzR0hTQS00ODQ5LXgzangtNDVxcs4AAu07
Pimcore vulnerable to stored stored Cross-site Scripting via`properties` when creating new usersEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 9 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS0yeHBtLWNtdnctM2pjY84AAyKA
Reflected XSS in Application Logger moduleEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 12 months ago
GSA_kwCzR0hTQS1ndm1mLXdjeDYtcDk3NM4AAs60
Improper quoting of columns when using setOrderBy() or setGroupBy() on listing classes in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 12 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 5 months ago
GSA_kwCzR0hTQS02dmY2LWczcHItajgzaM4AAxFw
pimcore is vulnerable to cross-site scripting via "title field " in data objectsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 5 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1janY2LXc1aGYtNXdyNs4AAzAA
Cross-site Scripting (XSS) in Ecommerce Pricing Rules name fieldEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS00NzZnLXY3aGYtY3c1bc4AAy__
Cross-site Scripting (XSS) in Document Properties ParameterEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1qd2c0LXFjZ3YtNXdnNs4AAy_2
SQL Injection in Admin Translations APIEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS14bWc4LXc0NjUtbXI1Ns4AAy_1
SQL Injection in Translation Export APIEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS02bWhtLWdjcGYtNWdyOM4AAy_0
SQL Injection in Admin Search Find APIEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1yN21tLWp4NmgtaHY3bc4AAzAR
Cross-site Scripting (XSS) in Conditions tab of Pricing RulesEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS1tajJjLTVtanYtZ21tas07WA
SQL Injection in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS14Y3IzLTRxdnItNTRyaM07zw
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS02Z203LWo2NjgtdzZoOc05sw
SQL Injection in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS14bXEzLWhnangtNjk5N80zxQ
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS1qMjlmLW0yM2gtM3A4cM0zyw
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS0yMmhjLTQ3Y2MtN3g2Zs0zFQ
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS1nNzk1LTRoeHgtcXF3bc0zKA
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS0zcjVjLWg3ZzYtY3F3N84AAyaS
Duplicate Advisory: pimcore is vulnerable to cross-site scripting in classes moduleEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1xNjdmLTNqcTQtbXd3Ms0wVg
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS1oZm1nLWczOWMtNTQ0NM4AAye7
pimcore is vulnerable to cross-site scripting in translate moduleEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1teGgzLTI2OTktOThnOc0pxg
Cross-site Scripting pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS04eDQ0LXB3cjItcmdjNs0nMA
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1mN3E2LXh4cGgtbWZtOM0m0A
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
GSA_kwCzR0hTQS0ydjg4LXFxN3gteHE1Zs0ViA
Improper Encoding or Escaping of Output in Asset Metadata ComponentEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS01NGh3LW1oZ2gteDR2Y80kXQ
Business Logic Errors in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS12ajl4LXc3Y2gtZjQ2cM0kBw
pimcore is vulnerable to SQL InjectionEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS01N2hnLTI2aDctOXFnds0kCA
pimcore is vulnerable to Cross-site ScriptingEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1jNjk3LXIyMjctcHE2aM0kag
Unrestricted Upload of File with Dangerous Type in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS00ZjV4LXE0amMteGZjZs0kWw
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1wbTN2LXF4ZjYtZmd4ds0ljw
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS02cWNjLXdoZ3AtcGpqMs0wag
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS04eHg5LXJ4cmotMm0yd80dig
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS04dzN4LXI2eDctYzVyNc0ayw
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS0zcDg1LXA0cWctaGNycM0azQ
pimcore is vulnerable to Cross-site ScriptingEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS0ydjJ2LWZ4N3ItZjJmaM0azA
pimcore is vulnerable to Cross-Site Request Forgery (CSRF)Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1nOTN4LWZtMnctNXB4d84AAzAU
Cross-site Scripting (XSS) in DataObject columns gridEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS02ZnZmLXg4YzYtMmY2as4AAzAT
Cross-site Scripting (XSS) in DataObject Any Getter grid operatorEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS00eDM1LXZyODIteHZqNs4AAy_6
SQL Injection in AssetControllerEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS0yYzY3LXA0eGgtbTM0d84AAy_5
Cross-site Scripting (XSS) in Website Settings name fieldEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1mcTk1LXJ4NHEtcWdnMs4AAy_4
Cross-site Scripting (XSS) in Admin Login too many attempts noticeEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS05cTdxLXI1NHEtM2YzZ84AAy_3
Cross-site Scripting (XSS) in DataObject Classification StoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS05N2NwLTg4NzMtdjJnZs4AAx55
Pimcore vulnerable to Cross Site Scripting in Documents Link EditableEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1nMm1jLWZxcWMtaHhnM84AAzD1
Pimcore Path Traversal Vulnerability in AdminBundle/Controller/Reports/CustomReportController.phpEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
GSA_kwCzR0hTQS13Nmo4LWpjMzYteDVxOc0Vhw
Improper Neutralization of Text-Values in Object Version PreviewEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBwMmgtOTVobS1odjly
Improper Neutralization of Formula Elements in a CSV File in pimcore/pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS12NTY3LXEyNjctcGhwZ80kBg
pimcore is vulnerable to Cross-site ScriptingEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1qNWMzLXI4NGYtOTU5Ns4AAzAV
Arbitrary File Read in Admin JS CSS filesEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS05eGc2LTc1bWgtN3gzZs4AAzCi
Cross-site Scripting (XSS) in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS0yMjk1LXZoMjgtcHBoY84AAzAC
Cross-site Scripting (XSS) in DataObjects QuantityValue Unit DefinitionEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS14OXhqLXBxbXYtOGpmN84AAzAB
Cross-site Scripting (XSS) in pimcore via DataObject Class date fieldsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 28 days ago
GSA_kwCzR0hTQS1tNm05LWdyODUtNzl2bc4AAzRH
Pimcore Cross-site Scripting (XSS) in name field of Custom ReportsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 28 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 28 days ago
GSA_kwCzR0hTQS1xN2NjLW02anctbTI2Ms4AAzRG
Pimcore Cross-site Scripting (XSS) in Predefined Properties deleteEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 28 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 29 days ago
GSA_kwCzR0hTQS1qOTN2LWN4MjYtMnhjNM4AAzNi
Duplicate Advisory: Cross-site Scripting (XSS) in Predefined Properties deleteEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 29 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 29 days ago
GSA_kwCzR0hTQS02Z3A2LXhqMjctZzg5cc4AAzNh
Duplicate Advisory: Cross-site Scripting (XSS) in name field of Custom ReportsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 29 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
GSA_kwCzR0hTQS04eHY0LWpqNGgtcXd3Ns4AAxYX
Pimcore contains Unrestricted Upload of File with Dangerous TypeEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 29 days ago
GSA_kwCzR0hTQS1nOTQ3LTQyMm0taHI3cM4AAzNr
Duplicate Advisory: Pimcore Cross-site Scripting (XSS) in Static Routes name fieldEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 29 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 27 days ago
GSA_kwCzR0hTQS1taHBqLTdtN2gtOHA2eM4AAzSc
Pimcore Cross-site Scripting (XSS) in Static Routes name fieldEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 27 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
GSA_kwCzR0hTQS1oZzc3LXZ4OXYtZjQ5eM4AAzAS
Path Traversal in Asset "import from server" optionEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 month ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS02OWZjLXYyMjMtNnJqd84AAyaR
Duplicate Advisory: Pimcore Cross-site scripting in Predefined Asset Metadata module in SettingsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS02bW1mLXFtMzctcG1nZ84AAyaO
Duplicate Advisory: Pimcore vulnerable to Reflected XSS in Predefined Properties module in SettingsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS0ydjdwLWY0cW0tcjVwY80_rw
SQL Injection found in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThqbWgtYzZ2ci1wbXZt
SQL Injection in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 2 years ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
GSA_kwCzR0hTQS1wYzMyLXg3MzctNzRjds0zpg
Cross-site Scripting in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: about 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS00MmMzLXd2d3ctZ2Nxas4AAyO8
Pimcore Remote Code Execution vulnerability in Search functionEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 27 days ago
GSA_kwCzR0hTQS13NzY2LTM1NzItZjJods4AAzSl
Pimcore Cross-site Scripting (XSS) vulnerability in Admin TranslationsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 27 days ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3ZjktY3ZoNS1xdzdm
Path traversal in pimcore/pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 2 years ago
Critical
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 7 months ago
GSA_kwCzR0hTQS01cXhxLXZnbW0tcTM5bc4AAvli
RCE vulnerability in Pimcore/Mail & Dynamic Text LayoutEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 7 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 22 days ago
GSA_kwCzR0hTQS1xM3A0LXYyY20tcTk0Nc4AAzWk
Pimcore Cross-site Scripting vulnerabilityEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 22 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS0zMjIzLXc3NzQtOTlmcc4AAyJ_
Cross-site Scripting (XSS) in Document TypesEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1nanE0LTY5d2otcDZwcs0uLA
Path traversal in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS03cjM1LWNodjQteHIzcs4AAye9
Pimcore vulnerable to Reflected XSS in Predefined Properties module in SettingsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1oOXZjLTJwOWctNjNncM0r-w
Exposure of Sensitive Information to an Unauthorized Actor in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS02cWptLTM5dmgtNzI5d84AAye8
Pimcore Cross-site Scripting in Predefined Asset Metadata module in SettingsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS1jZzNoLXJjOXEtZzh2Oc0pwQ
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS00NTV3LWd2NXAtd2dnM80kXg
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS04anY3LXZ3cmMtbXY0Z84AAyAp
Cross-site Scripting (XSS) in pimcore/pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 days ago
GSA_kwCzR0hTQS00NmczLWY5cjgteGo0ds4AAzpL
Pimcore vulnerable to Pre-Auth Path Traversal in pimcore_log parameterEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 days ago
GSA_kwCzR0hTQS1tNG12LXJtcjctaDVmNc4AAzpI
Pimcore Privilege Defined With Unsafe Actions vulnerabilityEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 days ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS1ycndtLTh3cW0tZ3dnds4AAyJ-
Cross-site Scripting (XSS) - stored in Print DocumentsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS14YzlwLXI1cWotOHhtOc4AAyK5
Improper quoting of columns when calling methods "getByUuid" & "exists" on UUID ModelEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS1naDRnLTY1ZjYtODRnNc4AAyBs
pimcore is vulnerable to cross-site scriptingEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
GSA_kwCzR0hTQS0zdzk2LXA2dmgtYzI5OM4AAxni
Cross-site Scripting in pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS1yY2c5LWhyaHgtNnE2Oc4AAyMM
Pimcore has Cross-site Scripting vulnerability in DataObject tooltip fieldEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS1mMmpoLW1mMmMtODI3OM4AAx0h
Pimcore vulnerable to Cross-site ScriptingEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZwZmYtMzg0ai12eHE3
Data leakage via SQL Injection in PimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 3 years ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
GSA_kwCzR0hTQS1yMnZxLXA2NTgtcDI3NM4AAxlx
SameSite Attribute vulnerability in pimCoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmY3YtcTRxcS0ycGg0
CKEditor 4 vulnerabilities in versions <4.16.1Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
High
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc4angtNjZwOC12Y20y
SQL injection in pimcore/pimcoreEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: almost 2 years ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
GSA_kwCzR0hTQS03NnI3LWg0NnctNDYzcs4AAxps
Cross Site Scripting (XSS) in Model\DataObject\Data\UrlSlugEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 4 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
GSA_kwCzR0hTQS01Nzl4LWNqdnItY3FqOc0V2g
Observable Response Discrepancy in Lost Password ServiceEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS04d2c3LTg4Y2ctN3A5as4AAx91
Withdrawn Advisory: Pimcore vulnerable to Cross-site ScriptingEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS00Mng4LTJ2NTMtcHFtas4AAyMK
Pimcore has Cross site Scripting vulnerability in Schedule tab of DocumentsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS12ZjdxLWcycHYtanh2eM4AAyO9
Pimcore vulnerable to improper quoting of filters in Custom ReportsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS14NWozLW1xOWctOGpjOM4AAyK4
Cross-site Scripting (XSS) in UrlSlug Data typeEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
GSA_kwCzR0hTQS02NmNtLWM3Y2gtNWo4cc4AAyML
Pimcore vulnerable to Cross-site Scripting (XSS) in RedirectsEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 3 months ago
Moderate
Ecosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
GSA_kwCzR0hTQS1ycDc4LTQ1NjItZ3gzY84AAyaQ
Duplicate Advisory: pimcore is vulnerable to cross-site scripting in translate moduleEcosystems: packagist
Packages: pimcore/pimcore
Source: GitHub Advisory Database
Published: 2 months ago
Filter by Severity
Filter by Ecosystem
Filter by Package
pimcore/pimcore
100
microweber/microweber
75
thorsten/phpmyfaq
54
moodle/moodle
53
shopware/platform
41
typo3/cms-core
39
showdoc/showdoc
36
shopware/core
32
librenms/librenms
31
snipe/snipe-it
29
concrete5/concrete5
27
craftcms/cms
24
dolibarr/dolibarr
22
remdex/livehelperchat
22
typo3/cms
19
froxlor/froxlor
19
mautic/core
18
pocketmine/pocketmine-mp
18
shopware/shopware
18
silverstripe/framework
18
baserproject/basercms
17
cakephp/cakephp
17
yetiforce/yetiforce-crm
16
drupal/core
16
grumpydictator/firefly-iii
15
francoisjacquet/rosariosis
15
nilsteampassnet/teampass
15
symfony/symfony
14
tribalsystems/zenario
13
ezsystems/ezpublish-kernel
12
phpmailer/phpmailer
12
getkirby/cms
12
openmage/magento-lts
12
forkcms/forkcms
12
getgrav/grav
12
feehi/feehicms
11
intelliants/subrion
11
prestashop/prestashop
10
contao/core-bundle
10
october/system
10
centreon/centreon
9
concrete5/core
9
kevinpapst/kimai2
9
ssddanbrown/bookstack
8
ezsystems/ezplatform-kernel
8
funadmin/funadmin
8
topthink/framework
8
alextselegidis/easyappointments
8
codeigniter4/framework
8
sylius/sylius
8
wwbn/avideo
8
elefant/cms
8
facturascripts/facturascripts
8
impresscms/impresscms
8
october/backend
7
october/cms
7
feehi/cms
7
magento/community-edition
7
laravel/framework
7
smarty/smarty
7
wallabag/wallabag
7
backdrop/backdrop
6
dompdf/dompdf
6
simplesamlphp/simplesamlphp
6
guzzlehttp/guzzle
6
phpmyadmin/phpmyadmin
6
pterodactyl/panel
6
flarum/core
5
vrana/adminer
5
phpxmlrpc/phpxmlrpc
5
sulu/sulu
5
symfony/http-foundation
5
lavalite/cms
5
yourls/yourls
5
bottelet/flarepoint
5
symfony/security-http
5
enshrined/svg-sanitize
4
pimcore/customer-management-framework-bundle
4
pear/archive_tar
4
directmailteam/direct-mail
4
cockpit-hq/cockpit
4
bolt/bolt
4
ezsystems/ezplatform-admin-ui
4
in2code/femanager
4
nukeviet/nukeviet
4
pagekit/pagekit
4
cachethq/cachet
4
notrinos/notrinos-erp
4
idno/known
4
symfony/http-kernel
4
tinymce
4
TinyMCE
4
tinymce/tinymce
4
bytefury/crater
4
phpoffice/phpspreadsheet
3
typo3/cms-form
3
elgg/elgg
3
spatie/browsershot
3
silverstripe/admin
3
prestashop/productcomments
3
illuminate/database
3
uvdesk/community-skeleton
3
sylius/resource-bundle
3
nystudio107/craft-seomatic
3
ibexa/core
3
silverstripe/assets
3
symfony/security
3
composer/composer
3
twig/twig
3
icecoder/icecoder
3
rudloff/alltube
3
shopware/storefront
3
oro/platform
3
silverstripe/graphql
3
facade/ignition
3
limesurvey/limesurvey
3
gilacms/gila
3
shopxo/shopxo
2
studio-42/elfinder
2
protobuf
2
github.com/protocolbuffers/protobuf
2
Google.Protobuf
2
com.google.protobuf:protobuf-parent
2
google/protobuf
2
verot/class.upload.php
2
typo3/html-sanitizer
2
badaso/core
2
ether/logs
2
wintercms/winter
2
opencart/opencart
2
silverstripe/cms
2
dweeves/magmi
2
phpfastcache/phpfastcache
2
appwrite/server-ce
2
ibexa/admin-ui
2
symfony/cache
2
buddypress/buddypress
2
symfony/security-bundle
2
yoast-seo-for-typo3/yoast_seo
2
exceedone/exment
2
billz/raspap-webgui
2
exceedone/laravel-admin
2
miniorange/miniorange-saml
2
october/october
2
laravel/laravel
2
yiisoft/yii2-dev
2
topthink/think
2
ezsystems/ezplatform-rest
2
neos/neos
2
s-cart/s-cart
2
azuracast/azuracast
2
bolt/core
2
erusev/parsedown
2
anchorcms/anchor-cms
2
guzzlehttp/psr7
2
croogo/croogo
2
squizlabs/php_codesniffer
2
codeigniter4/shield
2
ptrofimov/beanstalk_console
2
symfony/framework-bundle
2
modx/revolution
2
latte/latte
2
oro/commerce
2
processwire/processwire
2
noumo/easyii
2
typo3/cms-backend
2
drupal/drupal
2
october/rain
2
getkirby/panel
2
react/http
2
privatebin/privatebin
2
unisharp/laravel-filemanager
2
league/commonmark
2
pixelfed/pixelfed
2
aheinze/cockpit
2
api-platform/core
2
typo3fluid/fluid
2
laminas/laminas-diactoros
2
admidio/admidio
2
packbackbooks/lti-1-3-php-library
2
cuyz/valinor
2
phpseclib/phpseclib
2
yiisoft/yii2-gii
2
codiad/codiad
2
helloxz/imgurl
2
filegator/filegator
2
joomla/archive
1
harvesthq/chosen
1
livehelperchat/livehelperchat
1
simplesamlphp/simplesamlphp-module-openid
1
spipu/html2pdf
1
vova07/yii2-fileapi-widget
1
vanilla/safecurl
1
pimcore/perspective-editor
1
xataface/xataface
1
contao/managed-edition
1
litespeed.js
1
pear/crypt_gpg
1
laravel/fortify
1
sabberworm/php-css-parser
1
web-auth/webauthn-framework
1
phpmussel/phpmussel
1
ectouch/ectouch
1
php-mod/curl
1
hillelcoren/invoice-ninja
1
orchid/platform
1
neorazorx/facturascripts
1
personnummer/personnummer
1
Sylius/Sylius
1
sylius/grid-bundle
1
laminas/laminas-form
1
ibexa/post-install
1
silverstripe/hybridsessions
1
matyhtf/framework
1
yiisoft/yii
1
melisplatform/melis-front
1
melisplatform/melis-cms
1
bmarshall511/wordpress_zero_spam
1
statamic/cms
1
yeswiki/yeswiki
1
jsdecena/laracom
1
ezsystems/ezpublish-legacy
1
librenms/librenms/
1
pimcore/data-hub
1
fenom/fenom
1
webcoast/deferred-image-processing
1
prestashop/gamification
1
bootstrap-3-typeahead
1
bassjobsen/bootstrap-3-typeahead
1
wpanel/wpanel4-cms
1
ecodev/newsletter
1
pwweb/laravel-core
1
silverstripe/subsites
1
sitegeist/fluid-components
1
area17/twill
1
genix/cms
1
ibexa/user
1
terminal42/contao-tablelookupwizard
1
mediawiki/matomo
1
luyadev/yii-helpers
1
tastyigniter/tastyigniter
1
prestashop/ps_facetedsearch
1
mantisbt/mantisbt
1
s-cart/core
1
wp-graphql/wp-graphql
1
netgen/tagsbundle
1
gaoming13/wechat-php-sdk
1
innologi/typo3-appointments
1
adodb/adodb-php
1
fixpunkt/fp-masterquiz
1
silverstripe/versioned-admin
1
DotNetCasClient
1
flarum/tags
1
jasig/phpcas
1
zendframework/zend-http
1
org.jasig.cas:cas-client
1
mojo42/jirafeau
1
apereo/phpcas
1
lms/routes
1
phpunit/phpunit
1
arc/web
1
brotkrueml/schema
1
brotkrueml/typo3-matomo-integration
1
topthink/thinkphp
1
userfrosting/userfrosting
1
sylius/paypal-plugin
1
krayin/laravel-crm
1
fixpunkt/fp-newsletter
1
silverstripe/silverstripe-omnipay
1
symfony/security-guard
1
gos/web-socket-bundle
1
symfont/process
1
symfony/serializer
1
marcwillmann/turn
1
codeception/codeception
1
cakephp/database
1
simplito/elliptic-php
1
liftkit/database
1
simplesamlphp/simplesamlphp-module-openidprovider
1
bagisto/bagisto
1
cesnet/simplesamlphp-module-proxystatistics
1
symfony/mime
1
mittwald/typo3_forum
1
zendframework/zend-feed
1
zendframework/zend-diactoros
1
ezsystems/ezplatform
1
ezsystems/ezplatform-graphql
1
kitodo/presentation
1
phpservermon/phpservermon
1
doctrine/dbal
1
barrelstrength/sprout-base-email
1
contao/contao
1
barrelstrength/sprout-forms
1
knplabs/knp-snappy
1
neoan3-apps/template
1
himiklab/yii2-jqgrid-widget
1
in2code/lux
1
bk2k/bootstrap-package
1
phpmyfaq/phpmyfaq
1
gree/jose
1