Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

5 advisories

Loading
Embedding untrusted input inside CSV files leads to Formula Injection/CSV Injection High
CVE-2023-2629 was published for pimcore/customer-management-framework-bundle (Composer) May 11, 2023
sampritdas8
Pimcore Cross-site Scripting (XSS) in Static Routes name field Moderate
CVE-2023-2616 was published for pimcore/pimcore (Composer) May 11, 2023
sampritdas8
Pimcore Cross-site Scripting (XSS) in name field of Custom Reports Moderate
CVE-2023-2614 was published for pimcore/pimcore (Composer) May 10, 2023
sampritdas8
Pimcore Cross-site Scripting (XSS) in Predefined Properties delete Moderate
CVE-2023-2615 was published for pimcore/pimcore (Composer) May 10, 2023
sampritdas8
Cross-site Scripting (XSS) in Ecommerce Pricing Rules name field Moderate
CVE-2023-2323 was published for pimcore/pimcore (Composer) Apr 27, 2023
sampritdas8
ProTip! Advisories are also available from the GraphQL API