CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0263 – Unrestricted Upload of File with Dangerous Type in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0263
18 Jan 2022 — Unrestricted Upload of File with Dangerous Type in Packagist pimcore/pimcore prior to 10.2.7. Una Carga Irrestricta de Archivo de Tipo Peligroso en el Empaquetador pimcore/pimcore versiones anteriores a 10.2.7 • https://github.com/pimcore/pimcore/commit/35d1853baf64d6a1d90fd8803e52439da53a3911 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0262 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0262
18 Jan 2022 — Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.7. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist pimcore/pimcore versiones anteriores a 10.2.7 • https://github.com/pimcore/pimcore/commit/6f36e841ce55f67e2e95253dd58f80659ef166c7 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-4146 – Business Logic Errors in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4146
18 Jan 2022 — Business Logic Errors in GitHub repository pimcore/pimcore prior to 10.2.6. Unos Errores de Lógica de Negocio en el repositorio de GitHub pimcore/pimcore versiones anteriores a 10.2.6 • https://github.com/pimcore/pimcore/commit/7011922f7f0f97a82d8c378559b91fcdb34604a6 • CWE-840: Business Logic Errors •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0260 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0260
18 Jan 2022 — Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.2.7. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en el repositorio de GitHub pimcore/pimcore versiones anteriores a 10.2.7 • https://github.com/pimcore/pimcore/commit/3125d5f0c04cfb5835857ca9416f0bb143130a2f • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0257 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0257
17 Jan 2022 — pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de la Entrada Durante la Generación de la Página Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/dfaf78b26fb77990267c0cc05b9fcb9f8de7b66d • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0258 – SQL Injection in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0258
17 Jan 2022 — pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command pimcore es vulnerable a una Neutralización Inapropiada de Elementos Especiales usados en un Comando SQL • https://github.com/pimcore/pimcore/commit/66281c12479dc01a06258d8533eaddfb1770d5bd • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0256 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0256
17 Jan 2022 — pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de la Entrada Durante la Generación de la Página Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/dff1cb0c466abcd55f1268934de3ed937b7436a7 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1CVE-2021-4139 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4139
21 Dec 2021 — pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de Entradas Durante la Generación de Páginas Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/d5c3e876d910784000335061c3bd24d301351245 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 1CVE-2021-4084 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4084
10 Dec 2021 — pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inadecuada de Entradas Durante la Generación de Páginas Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/3c2a14e676a57e5d77a16255965988eef48f9065 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2021-4081 – Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4081
10 Dec 2021 — pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inadecuada de Entradas Durante la Generación de Páginas Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/34ed0e050ff679b4b38414aef48ea1ff956f907a • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •