Exposición de Pimcore

CMS, Ecommerce

22

score de exposición

2382

sitios usan

0

en explotación

1

críticos

CVEs

32 resultados

CVE-2023-38708MEDIUMPimcore Path Traversal Vulnerability in AssetController:importServerFilesActionEPSS 0.5%CVE-2024-49370HIGHChange-Password via Portal-Profile sets PimcoreBackendUser password without hashingEPSS 0.5%CVE-2023-23937HIGHMissing file upload type validation in pimcore/pimcoreEPSS 0.5%CVE-2026-27461MEDIUMPimcore vulnerable to SQL injection via unsanitized filter value in Dependency Dao RLIKE clauseEPSS 0.5%CVE-2025-27617MEDIUMPimcore Vulnerable to SQL Injection in getRelationFilterConditionEPSS 0.4%CVE-2026-23492HIGHPimcore has a Blind SQL Injection in Admin Search Find API due to an incomplete fix for CVE-2023-30848EPSS 0.4%CVE-2026-23493HIGHPimcore ENV Variables and Cookie Informations are exposed in http_error_logEPSS 0.4%CVE-2026-5394HIGHPimcore Platform v12.3.3 - SQL Injection in DataObject composite index handlingEPSS 0.3%CVE-2026-23495MEDIUMPimcore's Admin Classic Bundle is Missing Function Level Authorization on "Predefined Properties" ListingEPSS 0.3%CVE-2026-23494MEDIUMPimcore is Missing Function Level Authorization on "Static Routes" ListingEPSS 0.3%CVE-2026-23496MEDIUMPimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level AuthorizationEPSS 0.3%CVE-2026-5362MEDIUMPimcore Platform v12.3.3 - Stored XSS in Document Editable Embed renderingEPSS 0.2%

← anteriorpágina 2 / 2siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →