Exposure of Pimcore
CMS, Ecommerce22
exposure score
2,382
sites use
0
exploited
1
critical
CVEs
32 resultsCVE-2022-39365CRITICALRCE vulnerability in Pimcore/Mail & Dynamic Text LayoutEPSS 1.7%CVE-2021-39189MEDIUMObservable Response Discrepancy in Lost Password ServiceEPSS 1.2%CVE-2023-47637HIGHSQL Injection in Admin Grid Filter API in PimcoreEPSS 1.2%CVE-2021-39170HIGHImproper Encoding or Escaping of Output in Asset Metadata ComponentEPSS 1.2%CVE-2022-31092HIGHSQL injection in pimcoreEPSS 1.1%CVE-2021-37702HIGHImproper Neutralization of Formula Elements in a CSV File in pimcore/pimcoreEPSS 1.1%CVE-2024-11954MEDIUMPimcore Search Document cross site scriptingEPSS 1.0%CVE-2023-28438MEDIUMPimcore vulnerable to improper quoting of filters in Custom ReportsEPSS 0.9%CVE-2023-28108HIGHPimcore has improper quoting of columns when calling methods "getByUuid" & "exists" on UUID ModelEPSS 0.9%CVE-2020-26246HIGHAuthorization bypass in PimcoreEPSS 0.8%CVE-2023-30852MEDIUMPimcore Arbitrary File Read in Admin JS CSS filesEPSS 0.8%CVE-2023-30855MEDIUMPimcore Path Traversal Vulnerability in AdminBundle/Controller/Reports/CustomReportController.phpEPSS 0.8%CVE-2023-30849HIGHPimcore vulnerable to SQL Injection in Translation Export APIEPSS 0.8%CVE-2023-30850HIGHPimcore SQL Injection Vulnerability in Admin Translations APIEPSS 0.8%CVE-2024-32871HIGHPimcore Vulnerable to Flooding Server with Thumbnail filesEPSS 0.8%CVE-2021-39166HIGHImproper Neutralization of Text-Values in Object Version PreviewEPSS 0.8%CVE-2023-30848HIGHPimcore SQL Injection Vulnerability in Admin Search Find APIEPSS 0.7%CVE-2024-29197MEDIUMPimcore Preview Documents are not restricted to logged in users anymoreEPSS 0.7%CVE-2023-28106MEDIUMPimcore vulnerable to Cross-site Scripting in UrlSlug Data typeEPSS 0.7%CVE-2023-28429MEDIUMPimcore has Cross-site Scripting vulnerability in DataObject tooltip fieldEPSS 0.5%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →