CVE-2022-0257 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0257
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de la Entrada Durante la Generación de la Página Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/dfaf78b26fb77990267c0cc05b9fcb9f8de7b66d https://huntr.dev/bounties/bad2073c-bbd5-4425-b3e9-c336b73ddda6 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2022-0258 – SQL Injection in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0258
pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command pimcore es vulnerable a una Neutralización Inapropiada de Elementos Especiales usados en un Comando SQL • https://github.com/pimcore/pimcore/commit/66281c12479dc01a06258d8533eaddfb1770d5bd https://huntr.dev/bounties/0df891e4-6412-4d9a-a9b7-d9df50311802 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2022-0256 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0256
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de la Entrada Durante la Generación de la Página Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/dff1cb0c466abcd55f1268934de3ed937b7436a7 https://huntr.dev/bounties/8d88e48a-7124-4aaf-9f1d-6cfe4f9a79c1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2021-4139 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4139
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de Entradas Durante la Generación de Páginas Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/d5c3e876d910784000335061c3bd24d301351245 https://huntr.dev/bounties/6ec59e43-095f-4ba3-8b75-e92250da8e3a • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2021-4084 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4084
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inadecuada de Entradas Durante la Generación de Páginas Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/3c2a14e676a57e5d77a16255965988eef48f9065 https://huntr.dev/bounties/dcb37f19-ba53-4498-b953-d21999279266 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •