GCVE - cpe:2.3:a:pimcore:pimcore:10.5.15:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:pimcore:pimcore:10.5.15:*:*:*:*:*:*:*

part: a version: 10.5.15 update: *

PURL mappings

PURL	Source	Last updated
`pkg:github/pimcore/pimcore`	purl2cpe	2026-06-01 10:15:13.508754
`pkg:sourceforge/pimcore`	purl2cpe	2026-06-01 10:15:13.508755

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-25240`	vulnerable	2026-06-03 14:49:32.405551	Details available An improper SameSite Attribute vulnerability in pimCore v10.5.15 allows attackers to execute arbitrary code. Published: 2023-02-13T00:00:00.000Z Updated: 2025-03-21T15:28:35.806Z Open on db.gcve.eu Reference links https://portswigger.net/web-security/csrf/bypassing-samesite-restrictions https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/pimcore/pimCore-10.5.15	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.