Aimeos Vulnerabilities
Comprehensive security vulnerability database for Aimeos products
1
0
0
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-66468 | 6.1 | This vulnerability allows an attacker to inject malicious JavaScript code into the content pages of the Aimeos GrapesJS CMS, potentially leading to a stored cross-site scripting (XSS) attack. This can happen if the site's standard security feature, the Content Security Policy, is turned off and the attacker has access as an editor. | aimeosgrapesjs cms | Theoretical | 4 months agoDec 2, 2025 |
About Aimeos Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Aimeos products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.