Pimcore Customer Data Framework
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Pimcore Customer Data Framework.
By the Year
In 2026 there have been 0 vulnerabilities in Pimcore Customer Data Framework. Customer Data Framework did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 5 | 6.36 |
It may take a day or so for new Customer Data Framework vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Pimcore Customer Data Framework Security Vulnerabilities
XSS in PIMCORE Customer Data Framework before 3.4.2
CVE-2023-4145
5.4 - Medium
- August 03, 2023
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/customer-data-framework prior to 3.4.2.
XSS
Improper Authorization Pimcore Customer Data Framework <3.4.1
CVE-2023-3574
6.5 - Medium
- July 10, 2023
Improper Authorization in GitHub repository pimcore/customer-data-framework prior to 3.4.1.
Pimcore Customer Data Framework passwords stored recoverable before 3.3.10
CVE-2023-2881
4.9 - Medium
- May 25, 2023
Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10.
Insufficiently Protected Credentials
SQLi in Pimcore CDF <3.3.10
CVE-2023-2756
7.2 - High
- May 17, 2023
SQL Injection in GitHub repository pimcore/customer-data-framework prior to 3.3.10.
SQL Injection
CSV Formula Injection in Pimcore Customer Data Framework <3.3.9
CVE-2023-2629
7.8 - High
- May 10, 2023
Improper Neutralization of Formula Elements in a CSV File in GitHub repository pimcore/customer-data-framework prior to 3.3.9.
CSV Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Pimcore Customer Data Framework or by Pimcore? Click the Watch button to subscribe.
