CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2327 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2023-2327
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21. • https://github.com/pimcore/pimcore/commit/fb3056a21d439135480ee299bf1ab646867b5f4f https://huntr.dev/bounties/7336b71f-a36f-4ce7-a26d-c8335ac713d6 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2328 – Cross-site Scripting (XSS) - Generic in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2023-2328
Cross-site Scripting (XSS) - Generic in GitHub repository pimcore/pimcore prior to 10.5.21. • https://github.com/pimcore/pimcore/commit/e3562bfe249c557d15474c9a0acd5e06628521fe https://huntr.dev/bounties/01a44584-e36b-46f4-ad94-53af488397f6 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2338 – SQL Injection in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2023-2338
SQL Injection in GitHub repository pimcore/pimcore prior to 10.5.21. • https://github.com/pimcore/pimcore/commit/21e35af721c375ef4676ed50835e30d828e76520 https://huntr.dev/bounties/bbf59fa7-cf5b-4945-81b0-328adc710462 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2339 – Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2023-2339
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.5.21. • https://github.com/pimcore/pimcore/commit/6946f8a5a0a93b516c49f17a5b45044eebd73480 https://huntr.dev/bounties/bb1537a5-fe7b-4c77-a582-10a82435fbc2 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2340 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2023-2340
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21. • https://github.com/pimcore/pimcore/commit/aa38319e353cc3cdfac12e03e21ed7a8f3628d3e https://huntr.dev/bounties/964762b0-b4fe-441c-81e1-0ebdbbf80f3b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •