Pimcore

155 tracked vulnerabilities.

CVE-2026-27461 MEDIUM
Pimcore <=11.5.14.1/12.3.2 - SQL Injection
Feb 24, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-23496 MEDIUM
Pimcore Web2Print Tools Bundle <6.1.1 - Privilege Escalation
Jan 15, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-23495 MEDIUM
Pimcore <2.2.3-1.7.16 - Info Disclosure
Jan 15, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-23494 MEDIUM
Pimcore <12.3.1-11.5.14 - Info Disclosure
Jan 15, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-23493 HIGH
Pimcore <12.3.1-11.5.14 - Info Disclosure
Jan 15, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-23492 HIGH
Pimcore <12.3.1-11.5.14 - SQL Injection
Jan 14, 2026
CVSS 8.8
EPSS 0.00
CVE-2025-30166 MEDIUM
Pimcore Admin Classic Bundle - XSS
Apr 08, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-27617 HIGH
Pimcore < 11.5.4 - SQL Injection
Mar 11, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-24980 MEDIUM
Pimcore <1.7.4 - Info Disclosure
Feb 07, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-11956 MEDIUM
Pimcore <4.2.0 - SQL Injection
Jan 28, 2025
CVSS 4.7
EPSS 0.00
CVE-2024-11954 LOW
Pimcore 11.4.2 - XSS
Jan 28, 2025
CVSS 2.4
EPSS 0.00
CVE-2023-2332 MEDIUM
pimcore <10.5.19 - XSS
Nov 15, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-49370 MEDIUM
Pimcore <4.1.7, <3.1.16 - Info Disclosure
Oct 23, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-41109 MEDIUM
Pimcore Admin Classic Bundle < 1.3.10 - Information Disclosure
Jul 30, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-32871 HIGH
Pimcore < 11.2.4 - Resource Allocation Without Limits
Jun 04, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-29197 MEDIUM
Pimcore - Info Disclosure
Mar 26, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-25625 HIGH
Pimcore <1.3.4 - Host Header Injection
Feb 19, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-24822 MEDIUM
Pimcore <1.3.3 - Privilege Escalation
Feb 07, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-23646 HIGH
Pimcore Admin Classic Bundle < 1.3.2 - SQL Injection
Jan 24, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-23648 HIGH
Pimcore Admin Classic Bundle < 1.2.3 - Injection
Jan 24, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-21667 MEDIUM
Pimcore Customer Management Framework - Improper Access Control
Jan 11, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-21666 MEDIUM
Pimcore Customer Management Framework - Improper Access Control
Jan 11, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-21665 MEDIUM
Pimcore E-commerce Framework < 1.0.10 - Improper Access Control
Jan 11, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-49076 MEDIUM
Pimcore <4.0.5 - CSRF
Nov 30, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-49075 HIGH
Pimcore <1.2.2 - Privilege Escalation
Nov 28, 2023
CVSS 8.4
EPSS 0.00
Products
pimcore 127 admin-ui-classic-bundle 14 admin_classic_bundle 14 customer_management_framework 9 customer-management-framework-bundle 9 demo 1 e-commerce_framework 1 ecommerce-framework-bundle 1 perspective-editor 1 perspective_editor 1 web2print_tools 1 adminbundle 1 web2print-tools-bundle 1 core 1 customer-data-framework 1 customer_data_framework 1 data-hub 1
Quick Filters
Critical CVEs With Exploits In CISA KEV