Pimcore: >> Pimcore >> 10.3.0 Security Vulnerabilities
Pimcore is an open source data and experience management platform. Prior to version 10.5.21, the admin search find API has a SQL injection vulnerability. Users should upgrade to version 10.5.21 to receive a patch or, as a workaround, apply the patch manually.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-04-27
Pimcore is an open source data and experience management platform. Prior to version 10.5.21, A SQL injection vulnerability exists in the translation export API. Users should update to version 10.5.21 to receive a patch or, as a workaround, or apply the patch manually.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-04-27
Cross-site Scripting (XSS) - Generic in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
7.3
EPSS Score
0.0
Published
2023-04-27
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
4.0
EPSS Score
0.0
Published
2023-04-27
Cross-site Scripting (XSS) - DOM in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
5.2
EPSS Score
0.0
Published
2023-04-27
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
6.1
EPSS Score
0.0
Published
2023-04-27
Path Traversal in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-04-27
SQL Injection in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
7.2
EPSS Score
0.077
Published
2023-04-27
Cross-site Scripting (XSS) - Reflected in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
6.1
EPSS Score
0.0
Published
2023-04-27
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.21.
CVSS Score
4.0
EPSS Score
0.0
Published
2023-04-27