pi-hole Cyber Security Vulnerability Stats and Metrics

Authenticated Command Injection in Pi-hole by Pi-hole

CVE-2025-34087

Pi-hole LlcWeb👾🟡9CRITICAL

Pi-hole Before 6 Allows Unauthorized Temperature Unit Changes

CVE-2024-44069

Pi-hole

Pi-hole vulnerability allows remote command execution

CVE-2024-34361

Pi-holePi-hole👾🟡EPSS 52%8.6HIGH

Pi-hole Vulnerability Allows Reading of Internal Server Files

CVE-2024-28247

Pi-holePi-hole👾🟡7.6HIGH

Improper session handling of "Remember me for 7 days" functionality

CVE-2023-23614

Pi-holeAdminlte8.8HIGH

Pi-Hole/AdminLTE vulnerable due to improper access control in queryads endpoint

CVE-2022-23513

Pi-holeAdminlte5.3MEDIUM

Authenticated XSS in Pi-hole AdminLTE

CVE-2022-31029

Pi-holeAdminlte5.9MEDIUM

Stored XSS in Client Groups Management (Authenticated)

CVE-2021-41175

Pi-holeAdminlte7.3HIGH

Cross-site Scripting (XSS) - Reflected in pi-hole/adminlte

CVE-2021-3812

Pi-holePi-hole/adminlte6.7MEDIUM

Cross-site Scripting (XSS) - Reflected in pi-hole/adminlte

CVE-2021-3811

Pi-holePi-hole/adminlte6.7MEDIUM

Sensitive Cookie Without 'HttpOnly' Flag in pi-hole/adminlte

CVE-2021-3706

Pi-holePi-hole/adminlte7.4HIGH

Stored XSS Vulnerability in the Pi-hole Webinterface

CVE-2021-32793

Pi-holeAdminlte5.7MEDIUM

(Authenticated) Remote Code Execution Possible in Web Interface 5.5

CVE-2021-32706

Pi-holeAdminlteEPSS 59%7.6HIGH

Stored DOM XSS in Pi-hole Admin Web Interface

CVE-2021-29448

Pi-holeAdminlte7.6HIGH

Multiple Privilege Escalation Vulnerabilities Pihole

CVE-2021-29449

Pi-holePi-hole👾🟡EPSS 11%6.3MEDIUM

Reflected Cross-Site Scripting Vulnerability in Pi-hole by Pi-hole LLC

CVE-2020-35592

Pi-holePi-hole5.4MEDIUM

Session Fixation Vulnerability in Pi-hole by Pi-hole

CVE-2020-35591

Pi-holePi-hole5.4MEDIUM

Stored XSS Vulnerability in Pi-hole DNS Query Log

CVE-2020-35659

Pi-holePi-hole6.1MEDIUM

Local Privilege Escalation Vulnerability in Pi-Hole by Pi-Hole Team

CVE-2020-14162

Pi-holePi-hole7.8HIGH

Command Injection Vulnerability in Pi-hole by Pi-hole Project

CVE-2020-12620

Pi-holePi-hole7.8HIGH

Code Injection Vulnerability in Pi-hole DNS Solution from Pi-hole

CVE-2020-14971

Pi-holePi-hole7.8HIGH

Remote Code Execution Vulnerability in Pi-hole Web Interface by Pi-hole

CVE-2020-8816

Pi-holePi-hole👾🟡EPSS 91%🦅7.2HIGH

Remote Code Execution Vulnerability in Pi-hole's Gravity Updater

CVE-2020-11108

Pi-holePi-hole👾🟡EPSS 89%8.8HIGH

Command Injection Vulnerability in Pi-Hole by Pi-Hole Developers

CVE-2019-13051

Pi-holePi-hole👾🟡EPSS 31%8.8HIGH

Vulnerability Published:

Sort By:

3 July 2025

Authenticated Command Injection in Pi-hole by Pi-hole

19 August 2024

Pi-hole Before 6 Allows Unauthorized Temperature Unit Changes

5 July 2024

Pi-hole vulnerability allows remote command execution

27 March 2024

Pi-hole Vulnerability Allows Reading of Internal Server Files

26 January 2023

Improper session handling of "Remember me for 7 days" functionality

23 December 2022

Pi-Hole/AdminLTE vulnerable due to improper access control in queryads endpoint

7 July 2022

Authenticated XSS in Pi-hole AdminLTE

26 October 2021

Stored XSS in Client Groups Management (Authenticated)

17 September 2021

Cross-site Scripting (XSS) - Reflected in pi-hole/adminlte

Cross-site Scripting (XSS) - Reflected in pi-hole/adminlte

15 September 2021

Sensitive Cookie Without 'HttpOnly' Flag in pi-hole/adminlte

4 August 2021

Stored XSS Vulnerability in the Pi-hole Webinterface

(Authenticated) Remote Code Execution Possible in Web Interface 5.5

15 April 2021

Stored DOM XSS in Pi-hole Admin Web Interface

14 April 2021

Multiple Privilege Escalation Vulnerabilities Pihole

18 February 2021

Reflected Cross-Site Scripting Vulnerability in Pi-hole by Pi-hole LLC

Session Fixation Vulnerability in Pi-hole by Pi-hole

24 December 2020

Stored XSS Vulnerability in Pi-hole DNS Query Log

30 July 2020

Local Privilege Escalation Vulnerability in Pi-Hole by Pi-Hole Team

Command Injection Vulnerability in Pi-hole by Pi-hole Project

23 June 2020

Code Injection Vulnerability in Pi-hole DNS Solution from Pi-hole

29 May 2020

Remote Code Execution Vulnerability in Pi-hole Web Interface by Pi-hole

11 May 2020

Remote Code Execution Vulnerability in Pi-hole's Gravity Updater

9 October 2019

Command Injection Vulnerability in Pi-Hole by Pi-Hole Developers