CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0260 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0260
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.2.7. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en el repositorio de GitHub pimcore/pimcore versiones anteriores a 10.2.7 • https://github.com/pimcore/pimcore/commit/3125d5f0c04cfb5835857ca9416f0bb143130a2f https://huntr.dev/bounties/89e4ab60-21ec-4396-92ad-5b78d4c2897e • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0257 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0257
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de la Entrada Durante la Generación de la Página Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/dfaf78b26fb77990267c0cc05b9fcb9f8de7b66d https://huntr.dev/bounties/bad2073c-bbd5-4425-b3e9-c336b73ddda6 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0258 – SQL Injection in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0258
pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command pimcore es vulnerable a una Neutralización Inapropiada de Elementos Especiales usados en un Comando SQL • https://github.com/pimcore/pimcore/commit/66281c12479dc01a06258d8533eaddfb1770d5bd https://huntr.dev/bounties/0df891e4-6412-4d9a-a9b7-d9df50311802 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0256 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0256
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de la Entrada Durante la Generación de la Página Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/dff1cb0c466abcd55f1268934de3ed937b7436a7 https://huntr.dev/bounties/8d88e48a-7124-4aaf-9f1d-6cfe4f9a79c1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1CVE-2021-4139 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4139
pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') pimcore es vulnerable a una Neutralización Inapropiada de Entradas Durante la Generación de Páginas Web ("Cross-site Scripting") • https://github.com/pimcore/pimcore/commit/d5c3e876d910784000335061c3bd24d301351245 https://huntr.dev/bounties/6ec59e43-095f-4ba3-8b75-e92250da8e3a • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •