CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0665 – Path Traversal in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0665
22 Feb 2022 — Path Traversal in GitHub repository pimcore/pimcore prior to 10.3.2. Un Salto de Ruta en el repositorio de GitHub pimcore/pimcore versiones anteriores a 10.3.2 • https://github.com/pimcore/pimcore/commit/28945649a6234ccaa8c94c6cd83d1954603baf3e • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0565 – Cross-site Scripting in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0565
12 Feb 2022 — Cross-site Scripting in Packagist pimcore/pimcore prior to 10.3.1. Una Exposición de Información Confidencial a un Actor no Autorizado en Packagist pimcore/pimcore versiones anteriores a 10.3.1 • https://github.com/pimcore/pimcore/commit/7697f709a501860144352696e583a2533a6e1245 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0510 – Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0510
08 Feb 2022 — Cross-site Scripting (XSS) - Reflected in Packagist pimcore/pimcore prior to 10.3.1. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Reflejado en Packagist pimcore/pimcore versiones anteriores a 10.3.1 • https://github.com/pimcore/pimcore/commit/b5a9ad65e5a4dde1916f02019f8686ad835681ce • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0509 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0509
08 Feb 2022 — Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.3.1. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist pimcore/pimcore versiones anteriores a 10.3.1 • https://github.com/pimcore/pimcore/commit/6ccb5c12fc1be065ebce9c89c4677ee939b88597 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0348 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0348
27 Jan 2022 — Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist pimcore/pimcore versiones anteriores a 10.2 • https://github.com/pimcore/pimcore/commit/832c34aeb9f21f213295a0c28377132df996352a • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0251 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0251
26 Jan 2022 — Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.2.10. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en el repositorio de GitHub pimcore/pimcore versiones anteriores a 10.2.10 • https://github.com/pimcore/pimcore/commit/3ae96b9d41c117aafa45873ad10077d4b873a3cb • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0285 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0285
20 Jan 2022 — Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.9. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist pimcore/pimcore versiones anteriores a 10.2.9 • https://github.com/pimcore/pimcore/commit/b432225952e2a5ab0268f401b85a14480369b835 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0263 – Unrestricted Upload of File with Dangerous Type in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0263
18 Jan 2022 — Unrestricted Upload of File with Dangerous Type in Packagist pimcore/pimcore prior to 10.2.7. Una Carga Irrestricta de Archivo de Tipo Peligroso en el Empaquetador pimcore/pimcore versiones anteriores a 10.2.7 • https://github.com/pimcore/pimcore/commit/35d1853baf64d6a1d90fd8803e52439da53a3911 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-0262 – Cross-site Scripting (XSS) - Stored in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2022-0262
18 Jan 2022 — Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.7. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Almacenado en Packagist pimcore/pimcore versiones anteriores a 10.2.7 • https://github.com/pimcore/pimcore/commit/6f36e841ce55f67e2e95253dd58f80659ef166c7 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-4146 – Business Logic Errors in pimcore/pimcore
https://notcve.org/view.php?id=CVE-2021-4146
18 Jan 2022 — Business Logic Errors in GitHub repository pimcore/pimcore prior to 10.2.6. Unos Errores de Lógica de Negocio en el repositorio de GitHub pimcore/pimcore versiones anteriores a 10.2.6 • https://github.com/pimcore/pimcore/commit/7011922f7f0f97a82d8c378559b91fcdb34604a6 • CWE-840: Business Logic Errors •