Vulnerabilidades em pimcore
135 resultadosCVE-2023-47637HIGHSQL Injection in Admin Grid Filter API in PimcoreEPSS 1.2%CVE-2021-39170HIGHImproper Encoding or Escaping of Output in Asset Metadata ComponentEPSS 1.2%CVE-2022-31092HIGHSQL injection in pimcoreEPSS 1.1%CVE-2022-0263MEDIUMUnrestricted Upload of File with Dangerous Type in pimcore/pimcoreEPSS 1.1%CVE-2023-2341HIGHCross-site Scripting (XSS) - Generic in pimcore/pimcoreEPSS 1.1%CVE-2022-0565HIGHCross-site Scripting in pimcore/pimcoreEPSS 1.1%CVE-2021-31869MEDIUMPimcore AdminBundle 'specificID' SQL InjectionEPSS 1.1%CVE-2021-37702HIGHImproper Neutralization of Formula Elements in a CSV File in pimcore/pimcoreEPSS 1.1%CVE-2023-3820HIGHSQL Injection in pimcore/pimcoreEPSS 1.0%CVE-2023-2756MEDIUM SQL Injection in pimcore/customer-data-frameworkEPSS 0.9%CVE-2023-2983MEDIUMPrivilege Defined With Unsafe Actions in pimcore/pimcoreEPSS 0.9%CVE-2023-2338HIGH SQL Injection in pimcore/pimcoreEPSS 0.9%CVE-2021-4139MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.9%CVE-2023-28438MEDIUMPimcore vulnerable to improper quoting of filters in Custom ReportsEPSS 0.9%CVE-2023-28108HIGHPimcore has improper quoting of columns when calling methods "getByUuid" & "exists" on UUID ModelEPSS 0.9%CVE-2023-2984MEDIUMPath Traversal: '\..\filename' in pimcore/pimcoreEPSS 0.9%CVE-2024-23648HIGHPimcore Admin Classic Bundle host header injection in the password resetEPSS 0.8%CVE-2021-4146MEDIUMBusiness Logic Errors in pimcore/pimcoreEPSS 0.8%CVE-2020-26246HIGHAuthorization bypass in PimcoreEPSS 0.8%CVE-2023-30852MEDIUMPimcore Arbitrary File Read in Admin JS CSS filesEPSS 0.8%