Pimcore Schwachstellen

Zeitverlauf

Vergangenes Jahr

Version

10.5.046
10.5.146
10.5.246
10.5.346
10.5.445

Massnahmen

Official Fix110
Temporary Fix0
Workaround0
Unavailable0
Not Defined4

Ausnutzbarkeit

High2
Functional0
Proof-of-Concept5
Unproven0
Not Defined107

Zugriffsart

Not Defined0
Physical0
Local2
Adjacent4
Network108

Authentisierung

Not Defined0
High42
Low50
None22

Benutzeraktivität

Not Defined0
Required68
None46

C3BM Index

Vergangenes Jahr

CVSSv3 Base

≤10
≤20
≤30
≤421
≤530
≤628
≤720
≤813
≤92
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤421
≤532
≤628
≤721
≤810
≤92
≤100

VulDB

≤10
≤20
≤332
≤427
≤524
≤610
≤716
≤85
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤58
≤624
≤79
≤87
≤910
≤102

CNA

≤10
≤20
≤30
≤48
≤510
≤616
≤729
≤812
≤99
≤101

Hersteller

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k48
<2k58
<5k8
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploit heute

<1k114
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploitmarktvolumen

Vergangenes Jahr

🔴 CTI Aktivitäten

Affected Versions (114): 1, 1.4.9, 1.5, 1.5.1, 1.5.2, 1.5.3, 1.5.4, 1.5.5, 1.5.6, 1.5.7, 1.5.8, 1.5.9, 1.5.11, 1.5.12, 1.5.13, 1.5.14, 1.5.15, 1.5.16, 2.1, 2.2, 5.0, 5.1, 5.2, 5.3, 5.4, 5.5, 5.6, 5.7, 6.0, 6.1, 6.2, 6.2.1, 6.2.3, 6.8, 6.8.1, 6.8.2, 6.8.3, 6.8.4, 6.8.5, 6.8.6, 6.8.7, 9.0, 9.1, 9.2, 10.0, 10.0.1, 10.0.2, 10.0.3, 10.0.4, 10.0.5, 10.0.6, 10.1, 10.1.1, 10.1.2, 10.2, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 10.2.5, 10.2.6, 10.2.7, 10.2.8, 10.2.9, 10.3, 10.3.1, 10.3.2, 10.3.3, 10.3.4, 10.3.5, 10.4, 10.4.1, 10.4.2, 10.4.3, 10.5, 10.5.1, 10.5.2, 10.5.3, 10.5.4, 10.5.5, 10.5.6, 10.5.7, 10.5.8, 10.5.9, 10.5.11, 10.5.12, 10.5.13, 10.5.14, 10.5.15, 10.5.16, 10.5.17, 10.5.18, 10.5.19, 10.5.21, 10.5.22, 10.5.23, 10.6, 10.6.1, 10.6.2, 10.6.3, 10.6.4, 10.6.5, 10.6.6, 10.6.7, 11.0, 11.1, 11.1.1, 11.1.2, 11.1.3, 11.1.4, 11.1.5, 11.1.6, 11.2, 11.2.1

VeröffentlichtBaseTempSchwachstelle0dayHeuteAusMasCTICVE
26.03.20245.95.8Pimcore Information Disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-29197
15.11.20237.57.4Pimcore Admin Grid Filter API getFilterConditionExt SQL Injection$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-47637
31.10.20233.93.9pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5873
21.08.20233.53.4pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-4453
03.08.20235.55.3pimcore AssetController:importServerFilesAction Directory Traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-38708
21.07.20234.24.1pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-3822
21.07.20234.64.6pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-3821
21.07.20236.66.6pimcore SQL Injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-3820
21.07.20236.16.1pimcore Information Disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-3819
14.07.20236.46.3pimcore SQL Injection$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2023-3673
30.05.20237.17.0pimcore Privilege Escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-2984
30.05.20236.76.6pimcore Privilege Escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2983
10.05.20234.34.3pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2630
10.05.20235.25.2pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2615
10.05.20235.25.2pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2614
10.05.20235.15.1pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2023-2616
02.05.20236.56.4pimcore CustomReportController.php Directory Traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30855
28.04.20233.53.4pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-2361
28.04.20233.53.4pimcore Pricing Rule Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2332
27.04.20234.34.3pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2343
27.04.20233.23.1pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2342
27.04.20235.65.6pimcore Cross Site Scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2341
27.04.20237.57.4pimcore Admin Translations API SQL Injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30850
27.04.20237.57.4Pimcore Translation Export API SQL Injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30849
27.04.20237.57.4Pimcore Admin Search Find API SQL Injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30848

89 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 89 results.

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!