VIR Vulnerability Intelligence Relay

Package impact

php Packagist / pimcore/customer-management-framework-bundle

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2024-11956 unknown 1.0 1y ago pimcore/customer-data-framework vulnerable to SQL Injection
CVE-2024-21667 unknown 2y ago Pimcore Customer Data Framework Improper Access Control allows unprivileged user to access GDPR extracts
CVE-2024-21666 unknown 2y ago Pimcore Customer Data Framework Improper Access Control allows unprivileged user to access customers duplicates list
CVE-2023-4145 unknown 3y ago pimcore/customer-management-framework-bundle Cross-site Scripting vulnerability in Segment name
CVE-2023-3574 unknown 3y ago Pimcore Customer Management Framework vulnerable to Improper Authorization in Rules Controller
CVE-2023-2881 unknown 3y ago Pimcore customers' list user password hash is disclosed
CVE-2023-2756 unknown 3y ago pimcore/customer-management-framework-bundle has SQL Injection vulnerability in Segment Assignment query
CVE-2023-2629 unknown 3y ago Embedding untrusted input inside CSV files leads to Formula Injection/CSV Injection
CVE-2023-32075 unknown 3y ago Pimcore vulnerable to Business Logic Errors via Customer automation rules