Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/pimcore/pimcore@11.5.2
Typecomposer
Namespacepimcore
Namepimcore
Version11.5.2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version12.3.4
Latest_non_vulnerable_version12.3.7
Affected_by_vulnerabilities
0
url VCID-21s4-mb97-v7bh
vulnerability_id VCID-21s4-mb97-v7bh
summary 
Pimcore Vulnerable to SQL Injection in getRelationFilterCondition
Authenticated users can craft a filter string used to cause a SQL injection.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-27617
reference_id
reference_type
scores
0
value 0.00544
scoring_system epss
scoring_elements 0.68124
published_at 2026-06-08T12:55:00Z
1
value 0.00544
scoring_system epss
scoring_elements 0.68139
published_at 2026-06-07T12:55:00Z
2
value 0.00544
scoring_system epss
scoring_elements 0.68146
published_at 2026-06-06T12:55:00Z
3
value 0.00544
scoring_system epss
scoring_elements 0.68138
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-27617
1
reference_url https://github.com/pimcore/pimcore
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pimcore/pimcore
2
reference_url https://github.com/pimcore/pimcore/blob/c721a42c23efffd4ca916511ddb969598d302396/models/DataObject/ClassDefinition/Data/Extension/RelationFilterConditionParser.php#L29-L47
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-12T15:29:36Z/
url https://github.com/pimcore/pimcore/blob/c721a42c23efffd4ca916511ddb969598d302396/models/DataObject/ClassDefinition/Data/Extension/RelationFilterConditionParser.php#L29-L47
3
reference_url https://github.com/pimcore/pimcore/blob/c721a42c23efffd4ca916511ddb969598d302396/models/DataObject/ClassDefinition/Data/Multiselect.php#L332-L347
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-12T15:29:36Z/
url https://github.com/pimcore/pimcore/blob/c721a42c23efffd4ca916511ddb969598d302396/models/DataObject/ClassDefinition/Data/Multiselect.php#L332-L347
4
reference_url https://github.com/pimcore/pimcore/commit/19a8520895484e68fd254773e32476565d91deea
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-12T15:29:36Z/
url https://github.com/pimcore/pimcore/commit/19a8520895484e68fd254773e32476565d91deea
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-27617
reference_id CVE-2025-27617
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-27617
6
reference_url https://github.com/advisories/GHSA-qjpx-5m2p-5pgh
reference_id GHSA-qjpx-5m2p-5pgh
reference_type
scores
url https://github.com/advisories/GHSA-qjpx-5m2p-5pgh
7
reference_url https://github.com/pimcore/pimcore/security/advisories/GHSA-qjpx-5m2p-5pgh
reference_id GHSA-qjpx-5m2p-5pgh
reference_type
scores
0
value 6.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-12T15:29:36Z/
url https://github.com/pimcore/pimcore/security/advisories/GHSA-qjpx-5m2p-5pgh
fixed_packages
0
url pkg:composer/pimcore/pimcore@11.5.4
purl pkg:composer/pimcore/pimcore@11.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-53nb-8vf3-9ubb
1
vulnerability VCID-hmpr-1fgb-jqea
2
vulnerability VCID-xvhk-gv9z-53hb
3
vulnerability VCID-yrnf-q3z4-jfh1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@11.5.4
aliases CVE-2025-27617, GHSA-qjpx-5m2p-5pgh
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-21s4-mb97-v7bh
1
url VCID-53nb-8vf3-9ubb
vulnerability_id VCID-53nb-8vf3-9ubb
summary 
Pimcore Has an Incomplete Patch for CVE-2023-30848
An **incomplete SQL injection patch** in the Admin Search Find API allows an authenticated attacker to perform **blind SQL injection**.
Although CVE-2023-30848 attempted to mitigate SQL injection by removing SQL comments (--) and catching syntax errors, the fix is insufficient. Attackers can still inject SQL payloads that do not rely on comments and infer database information via blind techniques. This vulnerability affects the admin interface and can lead to **database information disclosure**.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-23492
reference_id
reference_type
scores
0
value 5e-05
scoring_system epss
scoring_elements 0.00249
published_at 2026-06-08T12:55:00Z
1
value 5e-05
scoring_system epss
scoring_elements 0.00251
published_at 2026-06-06T12:55:00Z
2
value 5e-05
scoring_system epss
scoring_elements 0.0025
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-23492
1
reference_url https://github.com/pimcore/pimcore
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pimcore/pimcore
2
reference_url https://github.com/pimcore/pimcore/commit/25ad8674886f2b938243cbe13e33e204a2e35cc3
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-01-14T21:14:38Z/
url https://github.com/pimcore/pimcore/commit/25ad8674886f2b938243cbe13e33e204a2e35cc3
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-23492
reference_id CVE-2026-23492
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-23492
4
reference_url https://github.com/advisories/GHSA-6mhm-gcpf-5gr8
reference_id GHSA-6mhm-gcpf-5gr8
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-6mhm-gcpf-5gr8
5
reference_url https://github.com/advisories/GHSA-qvr7-7g55-69xj
reference_id GHSA-qvr7-7g55-69xj
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qvr7-7g55-69xj
6
reference_url https://github.com/pimcore/pimcore/security/advisories/GHSA-qvr7-7g55-69xj
reference_id GHSA-qvr7-7g55-69xj
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-01-14T21:14:38Z/
url https://github.com/pimcore/pimcore/security/advisories/GHSA-qvr7-7g55-69xj
fixed_packages
0
url pkg:composer/pimcore/pimcore@11.5.14
purl pkg:composer/pimcore/pimcore@11.5.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hmpr-1fgb-jqea
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@11.5.14
1
url pkg:composer/pimcore/pimcore@12.3.1
purl pkg:composer/pimcore/pimcore@12.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hmpr-1fgb-jqea
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@12.3.1
aliases CVE-2026-23492, GHSA-qvr7-7g55-69xj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-53nb-8vf3-9ubb
2
url VCID-cn1m-hnv8-p7by
vulnerability_id VCID-cn1m-hnv8-p7by
summary 
Duplicate Advisory: Pimcore Authenticated Stored Cross-Site Scripting (XSS) Via Search Document
Duplicate Advisory
This advisory has been withdrawn because it is a duplicate of GHSA-xr3m-6gq6-22cg. This link is maintained to preserve external references.

Original Description
A vulnerability classified as problematic was found in Pimcore 11.4.2. Affected by this vulnerability is an unknown functionality of the component Search Document. The manipulation leads to basic cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
references
0
reference_url https://vuldb.com/?ctiid.293905
reference_id
reference_type
scores
0
value 2.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://vuldb.com/?ctiid.293905
1
reference_url https://vuldb.com/?id.293905
reference_id
reference_type
scores
0
value 2.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://vuldb.com/?id.293905
2
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-11954
reference_id CVE-2024-11954
reference_type
scores
0
value 2.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-11954
3
reference_url https://github.com/advisories/GHSA-8m2r-x2m2-3wmw
reference_id GHSA-8m2r-x2m2-3wmw
reference_type
scores
url https://github.com/advisories/GHSA-8m2r-x2m2-3wmw
4
reference_url https://github.com/pimcore/pimcore/security/advisories/GHSA-xr3m-6gq6-22cg
reference_id GHSA-xr3m-6gq6-22cg
reference_type
scores
0
value 2.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
1
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pimcore/pimcore/security/advisories/GHSA-xr3m-6gq6-22cg
fixed_packages
aliases GHSA-8m2r-x2m2-3wmw
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cn1m-hnv8-p7by
3
url VCID-hmpr-1fgb-jqea
vulnerability_id VCID-hmpr-1fgb-jqea
summary 
Pimcore vulnerable to SQL injection via unsanitized filter value in Dependency Dao RLIKE clause
The filter query parameter in the dependency listing endpoints is JSON-decoded and the value field is concatenated directly into RLIKE clauses without sanitization or parameterized queries.

Affected code in models/Dependency/Dao.php:
- getFilterRequiresByPath() lines 90, 95, 100
- getFilterRequiredByPath() lines 148, 153, 158

All 6 locations use direct string concatenation like:

"AND LOWER(CONCAT(o.path, o.key)) RLIKE '".$value."'"

Note that $orderBy and $orderDirection in the same methods (lines 75-81) ARE properly `whitelist`-validated, but $value has zero sanitization.

Entry points (pimcore/admin-ui-classic-bundle ElementController.php):
- GET /admin/element/get-requires-dependencies (line 654)
- GET /admin/element/get-required-by-dependencies (line 714)

The controller JSON-decodes the filter query param and passes $filter['value'] straight to the Dao without any escaping.

PoC (time-based blind):
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-27461
reference_id
reference_type
scores
0
value 0.00013
scoring_system epss
scoring_elements 0.02364
published_at 2026-06-08T12:55:00Z
1
value 0.00013
scoring_system epss
scoring_elements 0.02378
published_at 2026-06-07T12:55:00Z
2
value 0.00013
scoring_system epss
scoring_elements 0.02429
published_at 2026-06-06T12:55:00Z
3
value 0.00013
scoring_system epss
scoring_elements 0.02434
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-27461
1
reference_url https://github.com/pimcore/pimcore
reference_id
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pimcore/pimcore
2
reference_url https://github.com/pimcore/pimcore/commit/1c3925fbec4895abeb21e5c244a83679c4e4a6f4
reference_id
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T18:56:21Z/
url https://github.com/pimcore/pimcore/commit/1c3925fbec4895abeb21e5c244a83679c4e4a6f4
3
reference_url https://github.com/pimcore/pimcore/pull/18991
reference_id
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T18:56:21Z/
url https://github.com/pimcore/pimcore/pull/18991
4
reference_url https://github.com/pimcore/pimcore/releases/tag/v12.3.3
reference_id
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T18:56:21Z/
url https://github.com/pimcore/pimcore/releases/tag/v12.3.3
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-27461
reference_id CVE-2026-27461
reference_type
scores
0
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-27461
6
reference_url https://github.com/advisories/GHSA-vxg3-v4p6-f3fp
reference_id GHSA-vxg3-v4p6-f3fp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vxg3-v4p6-f3fp
7
reference_url https://github.com/pimcore/pimcore/security/advisories/GHSA-vxg3-v4p6-f3fp
reference_id GHSA-vxg3-v4p6-f3fp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T18:56:21Z/
url https://github.com/pimcore/pimcore/security/advisories/GHSA-vxg3-v4p6-f3fp
fixed_packages
0
url pkg:composer/pimcore/pimcore@12.0.0-RC1
purl pkg:composer/pimcore/pimcore@12.0.0-RC1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-53nb-8vf3-9ubb
1
vulnerability VCID-xvhk-gv9z-53hb
2
vulnerability VCID-yrnf-q3z4-jfh1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@12.0.0-RC1
1
url pkg:composer/pimcore/pimcore@12.3.3
purl pkg:composer/pimcore/pimcore@12.3.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hrxz-az84-2ua8
1
vulnerability VCID-r86v-k4um-dyd4
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@12.3.3
aliases CVE-2026-27461, GHSA-vxg3-v4p6-f3fp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hmpr-1fgb-jqea
4
url VCID-rb6d-hsq8-hfg5
vulnerability_id VCID-rb6d-hsq8-hfg5
summary 
Pimcore Authenticated Stored Cross-Site Scripting (XSS) Via Search Document
A Stored Cross-Site Scripting (XSS) vulnerability in PIMCORE allows remote attackers to inject arbitrary web script or HTML via the PDF upload functionality. This can result in the execution of malicious scripts in the context of the user's browser when the PDF is viewed, leading to potential session hijacking, defacement of web pages, or unauthorized access to sensitive information.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-11954
reference_id
reference_type
scores
0
value 0.00511
scoring_system epss
scoring_elements 0.66835
published_at 2026-06-08T12:55:00Z
1
value 0.00511
scoring_system epss
scoring_elements 0.6685
published_at 2026-06-07T12:55:00Z
2
value 0.00511
scoring_system epss
scoring_elements 0.66865
published_at 2026-06-06T12:55:00Z
3
value 0.00511
scoring_system epss
scoring_elements 0.66857
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-11954
1
reference_url https://github.com/pimcore/pimcore
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pimcore/pimcore
2
reference_url https://vuldb.com/?ctiid.293905
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:M/C:N/I:P/A:N
1
value 2.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
2
value 2.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
3
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
4
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
5
value HIGH
scoring_system generic_textual
scoring_elements
6
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-28T14:16:56Z/
url https://vuldb.com/?ctiid.293905
3
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52194.py
reference_id CVE-2024-11954
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52194.py
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-11954
reference_id CVE-2024-11954
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-11954
5
reference_url https://github.com/advisories/GHSA-xr3m-6gq6-22cg
reference_id GHSA-xr3m-6gq6-22cg
reference_type
scores
url https://github.com/advisories/GHSA-xr3m-6gq6-22cg
6
reference_url https://github.com/pimcore/pimcore/security/advisories/GHSA-xr3m-6gq6-22cg
reference_id GHSA-xr3m-6gq6-22cg
reference_type
scores
0
value 3.3
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:M/C:N/I:P/A:N
1
value 2.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
2
value 2.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
3
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
4
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
5
value HIGH
scoring_system generic_textual
scoring_elements
6
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-28T14:16:56Z/
url https://github.com/pimcore/pimcore/security/advisories/GHSA-xr3m-6gq6-22cg
7
reference_url https://vuldb.com/?submit.451774
reference_id ?submit.451774
reference_type
scores
0
value 3.3
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:M/C:N/I:P/A:N
1
value 2.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
2
value 2.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
3
value 5.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-28T14:16:56Z/
url https://vuldb.com/?submit.451774
fixed_packages
0
url pkg:composer/pimcore/pimcore@11.5.3
purl pkg:composer/pimcore/pimcore@11.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21s4-mb97-v7bh
1
vulnerability VCID-53nb-8vf3-9ubb
2
vulnerability VCID-hmpr-1fgb-jqea
3
vulnerability VCID-xvhk-gv9z-53hb
4
vulnerability VCID-yrnf-q3z4-jfh1
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@11.5.3
aliases CVE-2024-11954, GHSA-xr3m-6gq6-22cg
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rb6d-hsq8-hfg5
5
url VCID-xvhk-gv9z-53hb
vulnerability_id VCID-xvhk-gv9z-53hb
summary 
Pimcore is Vulnerable to Broken Access Control: Missing Function Level Authorization on "Static Routes" Listing
The application fails to enforce proper server-side authorization checks on the API endpoint responsible for reading or listing static routes. In Pimcore, static routes are custom URL patterns defined via the backend interface or the var/config/staticroutes.php file, including details like regex-based patterns, controllers, variables, and priorities. These routes are registered automatically through the PimcoreStaticRoutesBundle and integrated into the MVC routing system. Testing revealed that an authenticated backend user lacking explicit permissions was able to invoke the endpoint (e.g., GET /api/static-routes) and retrieve sensitive route configurations. This violates OWASP A01:2021 Broken Access Control, as function-level authorization is absent, allowing unauthorized access to internal routing metadata. Without validation, the endpoint exposes route structures, potentially revealing application architecture, endpoints, or custom logic intended for administrative roles only.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-23494
reference_id
reference_type
scores
0
value 1e-05
scoring_system epss
scoring_elements 0.00014
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-23494
1
reference_url https://github.com/pimcore/pimcore
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/pimcore/pimcore
2
reference_url https://github.com/pimcore/pimcore/pull/18893
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-15T18:08:08Z/
url https://github.com/pimcore/pimcore/pull/18893
3
reference_url https://github.com/pimcore/pimcore/releases/tag/v11.5.14
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-15T18:08:08Z/
url https://github.com/pimcore/pimcore/releases/tag/v11.5.14
4
reference_url https://github.com/pimcore/pimcore/releases/tag/v12.3.1
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-15T18:08:08Z/
url https://github.com/pimcore/pimcore/releases/tag/v12.3.1
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-23494
reference_id CVE-2026-23494
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-23494
6
reference_url https://github.com/advisories/GHSA-m3r2-724c-pwgf
reference_id GHSA-m3r2-724c-pwgf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m3r2-724c-pwgf
7
reference_url https://github.com/pimcore/pimcore/security/advisories/GHSA-m3r2-724c-pwgf
reference_id GHSA-m3r2-724c-pwgf
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-15T18:08:08Z/
url https://github.com/pimcore/pimcore/security/advisories/GHSA-m3r2-724c-pwgf
fixed_packages
0
url pkg:composer/pimcore/pimcore@11.5.14
purl pkg:composer/pimcore/pimcore@11.5.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hmpr-1fgb-jqea
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@11.5.14
1
url pkg:composer/pimcore/pimcore@12.3.1
purl pkg:composer/pimcore/pimcore@12.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hmpr-1fgb-jqea
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@12.3.1
aliases CVE-2026-23494, GHSA-m3r2-724c-pwgf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xvhk-gv9z-53hb
6
url VCID-yrnf-q3z4-jfh1
vulnerability_id VCID-yrnf-q3z4-jfh1
summary 
Pimcore ENV Variables and Cookie Informations are exposed in http_error_log
The http_error_log file stores the $_COOKIE and $_SERVER variables, which means sensitive information such as database passwords, cookie session data, and other details can be accessed or recovered through the Pimcore backend.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-23493
reference_id
reference_type
scores
0
value 1e-05
scoring_system epss
scoring_elements 5e-05
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-23493
1
reference_url https://github.com/pimcore/pimcore
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pimcore/pimcore
2
reference_url https://github.com/pimcore/pimcore/commit/002ec7d5f84973819236796e5b314703b58e8601
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-15T19:02:04Z/
url https://github.com/pimcore/pimcore/commit/002ec7d5f84973819236796e5b314703b58e8601
3
reference_url https://github.com/pimcore/pimcore/pull/18918
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-15T19:02:04Z/
url https://github.com/pimcore/pimcore/pull/18918
4
reference_url https://github.com/pimcore/pimcore/releases/tag/v11.5.14
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-15T19:02:04Z/
url https://github.com/pimcore/pimcore/releases/tag/v11.5.14
5
reference_url https://github.com/pimcore/pimcore/releases/tag/v12.3.1
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-15T19:02:04Z/
url https://github.com/pimcore/pimcore/releases/tag/v12.3.1
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-23493
reference_id CVE-2026-23493
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-23493
7
reference_url https://github.com/advisories/GHSA-q433-j342-rp9h
reference_id GHSA-q433-j342-rp9h
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-q433-j342-rp9h
8
reference_url https://github.com/pimcore/pimcore/security/advisories/GHSA-q433-j342-rp9h
reference_id GHSA-q433-j342-rp9h
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-15T19:02:04Z/
url https://github.com/pimcore/pimcore/security/advisories/GHSA-q433-j342-rp9h
fixed_packages
0
url pkg:composer/pimcore/pimcore@11.5.14
purl pkg:composer/pimcore/pimcore@11.5.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hmpr-1fgb-jqea
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@11.5.14
1
url pkg:composer/pimcore/pimcore@12.3.1
purl pkg:composer/pimcore/pimcore@12.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-hmpr-1fgb-jqea
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@12.3.1
aliases CVE-2026-23493, GHSA-q433-j342-rp9h
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yrnf-q3z4-jfh1
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/pimcore/pimcore@11.5.2