| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-0257 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2022-01-17 15:15:15 | Deep Dive |
| CVE-2022-0258 | SQL Injection in pimcore/pimcore | pimcore | pimcore/pimcore | 高危 | - | 2022-01-17 15:15:10 | Deep Dive |
| CVE-2022-0256 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2022-01-17 15:10:09 | Deep Dive |
| CVE-2021-4139 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 超危 | - | 2021-12-21 12:50:10 | Deep Dive |
| CVE-2021-4084 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2021-12-10 11:15:11 | Deep Dive |
| CVE-2021-4081 | Cross-site Scripting (XSS) - Reflected in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2021-12-10 10:20:15 | Deep Dive |
| CVE-2021-4082 | Cross-Site Request Forgery (CSRF) in pimcore/pimcore | pimcore | pimcore/pimcore | 中危 | - | 2021-12-10 10:20:10 | Deep Dive |
| CVE-2021-39189 | Observable Response Discrepancy in Lost Password Service | pimcore | pimcore | Medium | 5.3 | 2021-09-15 13:50:13 | Deep Dive |
| CVE-2021-39170 | Improper Encoding or Escaping of Output in Asset Metadata Component | pimcore | pimcore | High | 8.0 | 2021-09-01 14:10:12 | Deep Dive |
| CVE-2021-39166 | Improper Neutralization of Text-Values in Object Version Preview | pimcore | pimcore | High | 8.0 | 2021-09-01 14:00:11 | Deep Dive |
| CVE-2021-37702 | Improper Neutralization of Formula Elements in a CSV File in pimcore/pimcore | pimcore | pimcore | High | 8.0 | 2021-08-18 14:45:10 | Deep Dive |
| CVE-2021-31869 | Pimcore AdminBundle 'specificID' SQL Injection | Pimcore | Pimcore AdminBundle | Medium | 6.5 | 2021-08-04 22:20:37 | Deep Dive |
| CVE-2021-31867 | Pimcore Customer Data Framework 'SegmentAssignmentController.php' Blind SQL Injection | Pimcore | Pimcore Customer Data Framework | Medium | 6.5 | 2021-08-04 22:20:35 | Deep Dive |
| CVE-2021-23405 | SQL Injection | - | pimcore/pimcore | High | 8.3 | 2021-07-09 12:40:15 | Deep Dive |
| CVE-2021-23340 | Local File Inclusion | - | pimcore/pimcore | High | 7.1 | 2021-02-18 14:25:14 | Deep Dive |
| CVE-2020-26246 | Authorization bypass in Pimcore | pimcore | pimcore | High | 7.7 | 2020-12-03 00:55:15 | Deep Dive |
| CVE-2020-7759 | SQL Injection | - | pimcore/pimcore | Medium | 6.5 | 2020-10-30 10:55:13 | Deep Dive |
| CVE-2019-10763 | Pimcore SQL注入漏洞 | - | pimcore/pimcore | 中危 | - | 2019-11-18 19:55:07 | Deep Dive |