| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-28108 | Pimcore has improper quoting of columns when calling methods "getByUuid" & "exists" on UUID Model | pimcore | pimcore | High | 7.9 | 2023-03-16 16:34:56 | Deep Dive |
| CVE-2023-28106 | Pimcore vulnerable to Cross-site Scripting in UrlSlug Data type | pimcore | pimcore | Medium | 6.1 | 2023-03-16 16:31:21 | Deep Dive |
| CVE-2023-1429 | Cross-site Scripting (XSS) - Reflected in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-03-16 00:00:00 | Deep Dive |
| CVE-2023-1312 | Cross-site Scripting (XSS) - Reflected in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-03-10 00:00:00 | Deep Dive |
| CVE-2023-1286 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-03-09 00:00:00 | Deep Dive |
| CVE-2023-1115 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-03-01 00:00:00 | Deep Dive |
| CVE-2023-1116 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-03-01 00:00:00 | Deep Dive |
| CVE-2023-1117 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-03-01 00:00:00 | Deep Dive |
| CVE-2023-1067 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-02-27 00:00:00 | Deep Dive |
| CVE-2023-0827 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-02-14 00:00:00 | Deep Dive |
| CVE-2023-23937 | Missing file upload type validation in pimcore/pimcore | pimcore | pimcore | High | 8.2 | 2023-02-03 19:31:34 | Deep Dive |
| CVE-2023-0323 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2023-01-16 00:00:00 | Deep Dive |
| CVE-2022-39365 | RCE vulnerability in Pimcore/Mail & Dynamic Text Layout | pimcore | pimcore | Critical | 9.8 | 2022-10-27 00:00:00 | Deep Dive |
| CVE-2022-3255 | Cross-site Scripting (XSS) - Reflected in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2022-09-21 12:00:21 | Deep Dive |
| CVE-2022-3211 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2022-09-15 13:35:10 | Deep Dive |
| CVE-2022-2796 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2022-08-23 08:00:20 | Deep Dive |
| CVE-2022-31092 | SQL injection in pimcore | pimcore | pimcore | High | 7.5 | 2022-06-27 21:25:12 | Deep Dive |
| CVE-2022-1429 | SQL injection in GridHelperService.php in pimcore/pimcore | pimcore | pimcore/pimcore | 高危 | - | 2022-04-22 09:10:10 | Deep Dive |
| CVE-2022-1351 | Stored XSS in Tooltip in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2022-04-14 09:15:15 | Deep Dive |
| CVE-2022-1339 | SQL injection in ElementController.php in pimcore/pimcore | pimcore | pimcore/pimcore | 高危 | - | 2022-04-13 09:45:15 | Deep Dive |