VulnerableCode Package Details - pkg:composer/pimcore/pimcore@5.6.2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/pimcore/pimcore@5.6.2

Essentials
History (7)

purl	pkg:composer/pimcore/pimcore@5.6.2

Next non-vulnerable version	6.3.0
Latest non-vulnerable version	12.3.7
Risk	4.0

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-6ph4-dkvv-eybx Aliases: CVE-2019-18985 GHSA-hf62-5vxh-jpwj		6.2.2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-d6ep-hreb-gqfg Aliases: CVE-2019-10867 GHSA-7hqr-j26m-gmwp	Deserialization of Untrusted Data An attacker with classes permission can send a POST request to `/admin/class/bulk-commit`, which will make it possible to exploit the unserialize function when passing untrusted values in the data parameter to `bundles/AdminBundle/Controller/Admin/DataObject/ClassController.php`.	5.7.1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-fb1z-259v-g7hp Aliases: CVE-2019-18986 GHSA-8889-9g3f-73rj		6.2.2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-m455-2tct-dugb Aliases: CVE-2019-16317 GHSA-352x-hc2f-fwff		5.7.1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-sccv-pzyk-cka7 Aliases: CVE-2019-18981 GHSA-jhcf-j4hg-v64r		6.2.2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tpk1-5fw2-pfgc Aliases: CVE-2019-10763 GHSA-fpff-384j-vxq7		6.3.0 Affected by 0 other vulnerabilities.
VCID-z739-9aw2-83gp Aliases: CVE-2019-16318 GHSA-cxj7-4jpj-2q38		5.7.1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-31T10:00:42.259807+00:00	GitLab Importer	Affected by	VCID-tpk1-5fw2-pfgc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/CVE-2019-10763.yml	38.6.0
2026-05-31T10:00:41.351479+00:00	GitLab Importer	Affected by	VCID-fb1z-259v-g7hp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/CVE-2019-18986.yml	38.6.0
2026-05-31T10:00:40.875117+00:00	GitLab Importer	Affected by	VCID-6ph4-dkvv-eybx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/CVE-2019-18985.yml	38.6.0
2026-05-31T10:00:39.787283+00:00	GitLab Importer	Affected by	VCID-sccv-pzyk-cka7	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/CVE-2019-18981.yml	38.6.0
2026-05-31T09:59:17.620366+00:00	GitLab Importer	Affected by	VCID-z739-9aw2-83gp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/CVE-2019-16318.yml	38.6.0
2026-05-31T09:59:16.876091+00:00	GitLab Importer	Affected by	VCID-m455-2tct-dugb	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/CVE-2019-16317.yml	38.6.0
2026-05-31T09:55:15.245975+00:00	GitLab Importer	Affected by	VCID-d6ep-hreb-gqfg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/CVE-2019-10867.yml	38.6.0