CVE Daily – Akeneo PIM (High+Critical) https://cvedaily.com/pages/tags/akeneo-pim.html CVE Daily – Akeneo PIM (High+Critical) en Wed, 03 Jun 2026 21:27:11 +0000 [High] CVE-2022-46157 – Akeneo PIM is an open source Product Information Management (PIM). Akeneo PIM Co... https://nvd.nist.gov/vuln/detail/CVE-2022-46157 https://nvd.nist.gov/vuln/detail/CVE-2022-46157 Fri, 09 Dec 2022 21:15:13 +0000 High CVE-2022-46157

Akeneo PIM is an open source Product Information Management (PIM). Akeneo PIM Community Edition versions before v5.0.119 and v6.0.53 allows remote authenticated users to execute arbitrary PHP code on the server by uploading a crafted image. Akeneo PIM Community Edition after the versions aforementioned provides patched Apache HTTP server configuration file, for docker setup and in documentation s…

CVSS: 8.8 · CWE: CWE-94

View on NVD

]]> [Critical] CVE-2017-1000009 – Akeneo PIM CE and EE <1.6.6, <1.5.15, <1.4.28 are vulnerable to shell injection ... https://nvd.nist.gov/vuln/detail/CVE-2017-1000009 https://nvd.nist.gov/vuln/detail/CVE-2017-1000009 Mon, 17 Jul 2017 13:18:16 +0000 Critical CVE-2017-1000009

Akeneo PIM CE and EE <1.6.6, <1.5.15, <1.4.28 are vulnerable to shell injection in the mass edition, resulting in remote execution.

CVSS: 9.8 · CWE: CWE-78

View on NVD

]]>