pimcore/pimcore
Content & Product Management Framework (CMS/PIM/E-Commerce)
Security Advisories for pimcore/pimcore in packagist
Moderate
7 months ago
Pimcore Vulnerable to SQL Injection in getRelationFilterCondition
packagist
pimcore/pimcore
High
8 months ago
Pimcore Authenticated Stored Cross-Site Scripting (XSS) Via Search Document
packagist
pimcore/pimcore
High
about 1 year ago
Pimcore includes vulnerable PHPOffice/PhpSpreadsheet
packagist
pimcore/pimcore, pimcore/admin-ui-classic-bundle, pimcore/data-importer
Moderate
over 1 year ago
Pimcore TinyMCE Bundle - tinymce CVE-2024-29203, CVE-2024-29881
packagist
pimcore/pimcore
Moderate
over 1 year ago
Pimcore Preview Documents are not restricted to logged in users anymore
packagist
pimcore/pimcore
High
almost 2 years ago
Pimcore SQL Injection in Admin Grid Filter API through Multiselect::getFilterConditionExt()
packagist
pimcore/pimcore
Moderate
about 2 years ago
Pimcore Cross-site Scripting (XSS) vulnerability in DataObject datetime fields
packagist
pimcore/pimcore
Moderate
about 2 years ago
Pimcore Path Traversal Vulnerability in AssetController:importServerFilesAction
packagist
pimcore/pimcore
High
about 2 years ago
Pimcore vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
packagist
pimcore/pimcore
High
about 2 years ago
Pimcore vulnerable to SQL Injection in Dataobjects sorting
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore vulnerable to Pre-Auth Path Traversal in pimcore_log parameter
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Privilege Defined With Unsafe Actions vulnerability
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Cross-site Scripting (XSS) vulnerability in Admin Translations
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Cross-site Scripting (XSS) in Static Routes name field
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Cross-site Scripting (XSS) in name field of Custom Reports
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Cross-site Scripting (XSS) in Predefined Properties delete
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Path Traversal Vulnerability in AdminBundle/Controller/Reports/CustomReportController.php
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in DataObject columns grid
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in DataObject Any Getter grid operator
packagist
pimcore/pimcore
Moderate
over 2 years ago
Path Traversal in Asset "import from server" option
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in Conditions tab of Pricing Rules
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in DataObjects QuantityValue Unit Definition
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in pimcore via DataObject Class date fields
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in Ecommerce Pricing Rules name field
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in Document Properties Parameter
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in Website Settings name field
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in Admin Login too many attempts notice
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) in DataObject Classification Store
packagist
pimcore/pimcore
Moderate
over 2 years ago
pimcore is vulnerable to cross-site scripting in Composite indices key field
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore vulnerable to Reflected XSS in Predefined Properties module in Settings
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Cross-site Scripting in Predefined Asset Metadata module in Settings
packagist
pimcore/pimcore
Moderate
over 2 years ago
pimcore is vulnerable to cross-site scripting in translate module
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore vulnerable to improper quoting of filters in Custom Reports
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore Remote Code Execution vulnerability in Search function
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore has Cross-site Scripting vulnerability in DataObject tooltip field
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore vulnerable to Cross-site Scripting (XSS) in Redirects
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore has Cross site Scripting vulnerability in Schedule tab of Documents
packagist
pimcore/pimcore
High
over 2 years ago
Improper quoting of columns when calling methods "getByUuid" & "exists" on UUID Model
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross-site Scripting (XSS) - stored in Print Documents
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore vulnerable to Cross Site Scripting in Email Blacklist
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore vulnerable to Cross Site Scripting in image/video thumbnail config
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore vulnerable to Cross Site Scripting in Documents Link Editable
packagist
pimcore/pimcore
Moderate
over 2 years ago
Cross Site Scripting (XSS) in Model\DataObject\Data\UrlSlug
packagist
pimcore/pimcore
Moderate
over 2 years ago
Pimcore contains Unrestricted Upload of File with Dangerous Type
packagist
pimcore/pimcore
Moderate
over 2 years ago
pimcore is vulnerable to cross-site scripting via "title field " in data objects
packagist
pimcore/pimcore
Critical
almost 3 years ago
RCE vulnerability in Pimcore/Mail & Dynamic Text Layout
packagist
pimcore/pimcore
Moderate
about 3 years ago
Pimcore vulnerable to stored stored Cross-site Scripting via`properties` when creating new users
packagist
pimcore/pimcore
High
over 3 years ago
Improper quoting of columns when using setOrderBy() or setGroupBy() on listing classes in Pimcore
packagist
pimcore/pimcore
Moderate
over 3 years ago
Pimcore Cross-site Scripting (XSS) vulnerability
packagist
pimcore/pimcore
High
over 3 years ago
Pimcore Unrestricted Upload of File with Dangerous Type
packagist
pimcore/pimcore
Moderate
over 3 years ago
Exposure of Sensitive Information to an Unauthorized Actor in pimcore
packagist
pimcore/pimcore