Vulnerabilidades en pimcore
135 resultadosCVE-2023-4145MEDIUMCross-site Scripting (XSS) - Stored in pimcore/customer-data-frameworkEPSS 0.5%CVE-2022-0705MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.5%CVE-2023-37280MEDIUMPimcore admin UI vulnerable to Cross-site Scripting in two factor authentication setup pageEPSS 0.5%CVE-2023-2339MEDIUMCross-site Scripting (XSS) - Reflected in pimcore/pimcoreEPSS 0.5%CVE-2024-49370HIGHChange-Password via Portal-Profile sets PimcoreBackendUser password without hashingEPSS 0.5%CVE-2023-1116MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.5%CVE-2023-2323MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.5%CVE-2023-4453MEDIUMCross-site Scripting (XSS) - Reflected in pimcore/pimcoreEPSS 0.5%CVE-2023-2615MEDIUMCross-site Scripting (XSS) - Reflected in pimcore/pimcoreEPSS 0.5%CVE-2023-2616MEDIUMCross-site Scripting (XSS) - Generic in pimcore/pimcoreEPSS 0.5%CVE-2023-2614MEDIUMCross-site Scripting (XSS) - DOM in pimcore/pimcoreEPSS 0.5%CVE-2023-46722MEDIUMPimcore Admin Classic Bundle Cross-site Scripting (XSS) in PDF previewsEPSS 0.5%CVE-2023-3821MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.5%CVE-2024-21665MEDIUMPimcore Ecommerce Framework Bundle Improper Access Control allows unprivileged user to access back-office orders listEPSS 0.5%CVE-2025-24980MEDIUMPimcore Admin Classic Bundle allows user enumerationEPSS 0.5%CVE-2024-41109MEDIUMPimcore vulnerable to disclosure of system and database information behind /admin firewallEPSS 0.5%CVE-2023-2730MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.5%CVE-2023-2340MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.5%CVE-2023-2361MEDIUMCross-site Scripting (XSS) - Stored in pimcore/pimcoreEPSS 0.5%CVE-2023-3822MEDIUMCross-site Scripting (XSS) - Reflected in pimcore/pimcoreEPSS 0.5%