Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/20696?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "type": "composer", "namespace": "typo3", "name": "cms", "version": "6.2.3", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "10.4.35", "latest_non_vulnerable_version": "12.2.0", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7350?format=api", "vulnerability_id": "VCID-1bnd-6xsq-nbec", "summary": "Improper Authentication\nAuthentication Bypass in TYPO3 CMS.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-011/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-011/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22105?format=api", "purl": "pkg:composer/typo3/cms@7.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/22107?format=api", "purl": "pkg:composer/typo3/cms@8.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1" } ], "aliases": [ "2016-04-12-3" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1bnd-6xsq-nbec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7556?format=api", "vulnerability_id": "VCID-1jcy-nx8g-z3d3", "summary": "Insecure Deserialization\nInsecure Unserialize in TYPO3 Backend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-023/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-023/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23261?format=api", "purl": "pkg:composer/typo3/cms@6.2.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23262?format=api", "purl": "pkg:composer/typo3/cms@7.6.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/23263?format=api", "purl": "pkg:composer/typo3/cms@8.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.4.1" } ], "aliases": [ "2016-11-22-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1jcy-nx8g-z3d3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7242?format=api", "vulnerability_id": "VCID-1ng4-5tkh-g7h5", "summary": "Multiple Cross-Site Scripting vulnerabilities in backend\nFailing to properly encode user input, several backend components are susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML or JavaScript.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "TYPO3-CORE-SA-2015-011" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1ng4-5tkh-g7h5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18457?format=api", "vulnerability_id": "VCID-1qjx-grvf-y7bk", "summary": "Insecure Unserialize in TYPO3 Backend\nFailing to properly validate incoming data, the suggest wizard is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-11-22-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-11-22-1.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-c7rj-92xr-wprg", "reference_id": "GHSA-c7rj-92xr-wprg", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-c7rj-92xr-wprg" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23261?format=api", "purl": "pkg:composer/typo3/cms@6.2.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/23262?format=api", "purl": "pkg:composer/typo3/cms@7.6.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/23263?format=api", "purl": "pkg:composer/typo3/cms@8.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.4.1" } ], "aliases": [ "GHSA-c7rj-92xr-wprg" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1qjx-grvf-y7bk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7437?format=api", "vulnerability_id": "VCID-25t3-1sm6-3kdn", "summary": "Cross-site Scripting\nXSS in TYPO3 Backend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-021", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-021" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22684?format=api", "purl": "pkg:composer/typo3/cms@6.2.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22685?format=api", "purl": "pkg:composer/typo3/cms@7.6.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/22686?format=api", "purl": "pkg:composer/typo3/cms@8.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.3.0" } ], "aliases": [ "2016-09-14-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-25t3-1sm6-3kdn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7162?format=api", "vulnerability_id": "VCID-2rhx-afay-97da", "summary": "Unauthenticated Path Disclosure\nIt has been discovered, that calling a PHP script which is delivered with TYPO3 for testing purposes, discloses the absolute server path to the TYPO3 installation.", "references": [ { "reference_url": "https://review.typo3.org/#/c/43120/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://review.typo3.org/#/c/43120/" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-008/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-008/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21206?format=api", "purl": "pkg:composer/typo3/cms@6.2.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/21207?format=api", "purl": "pkg:composer/typo3/cms@7.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.4.0" } ], "aliases": [ "GMS-2015-25" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2rhx-afay-97da" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7128?format=api", "vulnerability_id": "VCID-37wu-bjfj-k7eg", "summary": "Improper Restriction of Excessive Authentication Attempts\nBrute Force Protection Bypass in backend login.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-006/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/21152?format=api", "purl": "pkg:composer/typo3/cms@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.0" } ], "aliases": [ "2015-07-01-5" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-37wu-bjfj-k7eg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7234?format=api", "vulnerability_id": "VCID-3m2z-stmy-u7hm", "summary": "Cross-Site Scripting in Indexed Search\nFailing to properly encode editor input, the search result view of indexed_search is susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "TYPO3-CORE-SA-2015-015" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3m2z-stmy-u7hm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18654?format=api", "vulnerability_id": "VCID-3m53-kkk2-j7c2", "summary": "XML External Entity (XXE) Processing in TYPO3 Core\nAll XML processing within the TYPO3 CMS are vulnerable to XEE processing. This can lead to load internal and/or external (file) content within an XML structure. Furthermore it is possible to inject arbitrary files for an XML Denial of Service attack. For more information on that topic see https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-1.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-005", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-005" }, { "reference_url": "https://github.com/advisories/GHSA-qffc-gwpp-m2xr", "reference_id": "GHSA-qffc-gwpp-m2xr", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-qffc-gwpp-m2xr" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/21807?format=api", "purl": "pkg:composer/typo3/cms@7.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.4" } ], "aliases": [ "GHSA-qffc-gwpp-m2xr" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3m53-kkk2-j7c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7555?format=api", "vulnerability_id": "VCID-435j-f3yx-9yep", "summary": "Path Traversal in TYPO3 Core.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-024/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-024/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23261?format=api", "purl": "pkg:composer/typo3/cms@6.2.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23262?format=api", "purl": "pkg:composer/typo3/cms@7.6.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/23263?format=api", "purl": "pkg:composer/typo3/cms@8.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.4.1" } ], "aliases": [ "2016-11-22-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-435j-f3yx-9yep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7359?format=api", "vulnerability_id": "VCID-48jz-wwt8-33hx", "summary": "Information Exposure\nArbitrary File Disclosure in Form Component.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-010/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-010/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "2016-04-12-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-48jz-wwt8-33hx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7163?format=api", "vulnerability_id": "VCID-4etp-u4pt-v7hm", "summary": "Information Exposure\nFrontend: Unauthenticated Path Disclosure.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-008/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-008/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21206?format=api", "purl": "pkg:composer/typo3/cms@6.2.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/21152?format=api", "purl": "pkg:composer/typo3/cms@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.0" } ], "aliases": [ "2015-09-08-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4etp-u4pt-v7hm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7129?format=api", "vulnerability_id": "VCID-51ba-3ag9-rucn", "summary": "Cross-site Scripting\nCross-Site Scripting in 3rd party library Flowplayer.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-007/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-007/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/21152?format=api", "purl": "pkg:composer/typo3/cms@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.0" } ], "aliases": [ "2015-07-01-6" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-51ba-3ag9-rucn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/42154?format=api", "vulnerability_id": "VCID-5jgb-dsyx-hyb4", "summary": "Open Redirection in Login Handling\n### Problem\nIt has been discovered that Login Handling is susceptible to open redirection which allows attackers redirecting to arbitrary content, and conducting phishing attacks. No authentication is required in order to exploit this vulnerability.\n\n### Solution\nUpdate to TYPO3 versions 6.2.57, 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 that fix the problem described.\n\n### Credits\nThanks to Alexander Kellner who reported this issue and to TYPO3 security team member Torben Hansen who fixed the issue.\n\n### References\n* [TYPO3-CORE-SA-2021-001](https://typo3.org/security/advisory/typo3-core-sa-2021-001)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-21338", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48593", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48598", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.4861", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48529", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48589", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48564", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48587", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48539", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48641", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48646", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48596", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00253", "scoring_system": "epss", "scoring_elements": "0.48584", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-21338" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21338.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21338.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21338.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21338.yaml" }, { "reference_url": "https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-4jhw-2p6j-5wmp", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-4jhw-2p6j-5wmp" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21338", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21338" }, { "reference_url": "https://packagist.org/packages/typo3/cms-core", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://packagist.org/packages/typo3/cms-core" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2021-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2021-001" }, { "reference_url": "https://github.com/advisories/GHSA-4jhw-2p6j-5wmp", "reference_id": "GHSA-4jhw-2p6j-5wmp", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4jhw-2p6j-5wmp" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/569418?format=api", "purl": "pkg:composer/typo3/cms@6.2.57", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.57" }, { "url": "http://public2.vulnerablecode.io/api/packages/37610?format=api", "purl": "pkg:composer/typo3/cms@7.6.51", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-n15v-ta9h-6ffb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.51" }, { "url": "http://public2.vulnerablecode.io/api/packages/37612?format=api", "purl": "pkg:composer/typo3/cms@8.7.40", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-s64f-x81f-b7ce" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.40" }, { "url": "http://public2.vulnerablecode.io/api/packages/75853?format=api", "purl": "pkg:composer/typo3/cms@9.5.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.25" }, { "url": "http://public2.vulnerablecode.io/api/packages/75849?format=api", "purl": "pkg:composer/typo3/cms@10.4.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/75850?format=api", "purl": "pkg:composer/typo3/cms@11.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-uyeu-a3xr-fkh4" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1" } ], "aliases": [ "CVE-2021-21338", "GHSA-4jhw-2p6j-5wmp" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5jgb-dsyx-hyb4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7439?format=api", "vulnerability_id": "VCID-5ppt-avmb-cqb2", "summary": "Uncontrolled Resource Consumption\nCache Flooding in TYPO3 Frontend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-022", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-022" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22684?format=api", "purl": "pkg:composer/typo3/cms@6.2.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22685?format=api", "purl": "pkg:composer/typo3/cms@7.6.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/22686?format=api", "purl": "pkg:composer/typo3/cms@8.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.3.0" } ], "aliases": [ "2016-09-14-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5ppt-avmb-cqb2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19325?format=api", "vulnerability_id": "VCID-6gms-w48j-4ffh", "summary": "TYPO3 may allow editors to change, create, or delete metadata of files not within their file mounts\nIt has been discovered, that editors with access to file meta data table could change, create or delete metadata of files which are not within their file mounts.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-1.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/0decbf83c531cab77497429eb2edecf9a1038b25", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/0decbf83c531cab77497429eb2edecf9a1038b25" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/bff9fa5945801d1d2c641ddc8eb86c6647549d80", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/bff9fa5945801d1d2c641ddc8eb86c6647549d80" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-002" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-002" }, { "reference_url": "https://github.com/advisories/GHSA-4r76-xr68-w7m7", "reference_id": "GHSA-4r76-xr68-w7m7", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4r76-xr68-w7m7" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/53719?format=api", "purl": "pkg:composer/typo3/cms@7.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.1" } ], "aliases": [ "GHSA-4r76-xr68-w7m7" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6gms-w48j-4ffh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55117?format=api", "vulnerability_id": "VCID-6pvx-1qan-ukef", "summary": "TYPO3 Cross-site Scripting vulnerability\nCross-site scripting (XSS) vulnerability in the typoLink function in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allows remote authenticated editors to inject arbitrary web script or HTML via a link field.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8759", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40583", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40495", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40582", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40532", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.4061", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40502", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40602", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40554", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40574", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40611", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40592", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8759" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-2.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/25a1473907f0f4b2bb0147c661981940c57a4555", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/25a1473907f0f4b2bb0147c661981940c57a4555" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/de1755a6dcff9b037c6d5a1fa340ba100aff054a", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/de1755a6dcff9b037c6d5a1fa340ba100aff054a" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8759", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:P/A:N" }, { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8759" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-012", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-012" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012" }, { "reference_url": "https://web.archive.org/web/20200228051548/http://www.securityfocus.com/bid/79250", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20200228051548/http://www.securityfocus.com/bid/79250" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012/" }, { "reference_url": "http://www.securityfocus.com/bid/79250", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/79250" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.3.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://github.com/advisories/GHSA-j5v7-9xr5-m7gx", "reference_id": "GHSA-j5v7-9xr5-m7gx", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-j5v7-9xr5-m7gx" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "CVE-2015-8759", "GHSA-j5v7-9xr5-m7gx" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6pvx-1qan-ukef" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14772?format=api", "vulnerability_id": "VCID-6spw-66jg-syb1", "summary": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nMultiple cross-site scripting (XSS) vulnerabilities in Flowplayer Flash before 3.2.17, as used in Moodle through 2.3.11, 2.4.x before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2, allow remote attackers to inject arbitrary web script or HTML by (1) providing a crafted playerId or (2) referencing an external domain, a related issue to CVE-2013-7342.", "references": [ { "reference_url": "http://flash.flowplayer.org/documentation/version-history.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://flash.flowplayer.org/documentation/version-history.html" }, { "reference_url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-43344", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-43344" }, { "reference_url": "http://openwall.com/lists/oss-security/2014/03/17/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://openwall.com/lists/oss-security/2014/03/17/1" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7341", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49272", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49226", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49221", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49248", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49231", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49234", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.4918", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49229", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.492", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49169", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.4924", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.4927", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7341" }, { "reference_url": "https://github.com/flowplayer/flash/issues/121", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/flowplayer/flash/issues/121" }, { "reference_url": "https://github.com/moodle/moodle", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle" }, { "reference_url": "https://github.com/moodle/moodle/commit/98d135fea3006334093efa822205d4b2c3fd8ff9", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/98d135fea3006334093efa822205d4b2c3fd8ff9" }, { "reference_url": "https://github.com/moodle/moodle/commit/9f2967e301d123d11625f3b6948e1ee538086791", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/9f2967e301d123d11625f3b6948e1ee538086791" }, { "reference_url": "https://github.com/moodle/moodle/commit/c3cd5e1db9de4f1a634492d99990534e30518066", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/c3cd5e1db9de4f1a634492d99990534e30518066" }, { "reference_url": "https://github.com/moodle/moodle/commit/d65634044ebaa738f55bdec521beb42844d6916a", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/moodle/moodle/commit/d65634044ebaa738f55bdec521beb42844d6916a" }, { "reference_url": "https://moodle.org/mod/forum/discuss.php?d=256420", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://moodle.org/mod/forum/discuss.php?d=256420" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-007", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-007" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7341", "reference_id": "CVE-2013-7341", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7341" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2013-7341.yaml", "reference_id": "CVE-2013-7341.YAML", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2013-7341.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-j6c3-3c4w-qv8p", "reference_id": "GHSA-j6c3-3c4w-qv8p", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-j6c3-3c4w-qv8p" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/53719?format=api", "purl": "pkg:composer/typo3/cms@7.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.1" } ], "aliases": [ "CVE-2013-7341", "GHSA-j6c3-3c4w-qv8p" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6spw-66jg-syb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18453?format=api", "vulnerability_id": "VCID-6wsa-4ywc-8fh4", "summary": "Cache Flooding in TYPO3 Frontend\nLinks with a valid cHash argument lead to newly generated page cache entries. Because the cHash is not bound to a specific page, attackers could use valid cHash arguments for multiple pages, leading to additional useless page cache entries. Depending on the number of pages in the system and the number of available valid links with a cHash, attackers could add a considerable amount of additional cache entries, which in the end exceed storage limits and thus could lead to the system not responding any more. This means the Cache Flooding attack potentially could lead to a successful Denial of Service (DoS) attack.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-09-14-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-09-14-2.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-pw2q-qwvj-gh43", "reference_id": "GHSA-pw2q-qwvj-gh43", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-pw2q-qwvj-gh43" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22684?format=api", "purl": "pkg:composer/typo3/cms@6.2.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/22685?format=api", "purl": "pkg:composer/typo3/cms@7.6.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/23167?format=api", "purl": "pkg:composer/typo3/cms@8.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.3.1" } ], "aliases": [ "GHSA-pw2q-qwvj-gh43" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6wsa-4ywc-8fh4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7446?format=api", "vulnerability_id": "VCID-7d1g-j3k5-gub8", "summary": "Information Disclosure in TYPO3 Backend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-017", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-017" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "2016-07-19-4" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7d1g-j3k5-gub8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6847?format=api", "vulnerability_id": "VCID-7ngg-6yuz-jkge", "summary": "Improper Restriction of XML External Entity Reference\n`Auth/Yadis/XML.php` in PHP OpenID allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via XRDS data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.", "references": [ { "reference_url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000080", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2013-000080" }, { "reference_url": "http://jvn.jp/en/jp/JVN24713981/index.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://jvn.jp/en/jp/JVN24713981/index.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4701", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75399", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75365", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75375", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75395", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75373", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75362", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75403", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75409", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75308", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75312", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75344", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00881", "scoring_system": "epss", "scoring_elements": "0.75322", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4701" }, { "reference_url": "https://github.com/openid/php-openid", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/openid/php-openid" }, { "reference_url": "https://github.com/openid/php-openid/commit/625c16bb28bb120d262b3f19f89c2c06cb9b0da9", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/openid/php-openid/commit/625c16bb28bb120d262b3f19f89c2c06cb9b0da9" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-002" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4701", "reference_id": "CVE-2013-4701", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4701" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/openid/php-openid/CVE-2013-4701.yaml", "reference_id": "CVE-2013-4701.YAML", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/openid/php-openid/CVE-2013-4701.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2013-4701.yaml", "reference_id": "CVE-2013-4701.YAML", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2013-4701.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-5qp6-78pr-gv8c", "reference_id": "GHSA-5qp6-78pr-gv8c", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5qp6-78pr-gv8c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20819?format=api", "purl": "pkg:composer/typo3/cms@6.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.6" } ], "aliases": [ "CVE-2013-4701", "GHSA-5qp6-78pr-gv8c" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7ngg-6yuz-jkge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19050?format=api", "vulnerability_id": "VCID-7zx9-8afq-y3hc", "summary": "TYPO3 Information Disclosure Vulnerability Exploitable by Editors\nIt has been discovered, that editors with access to the file list module could list all files names and folder names in the root directory of a TYPO3 installation. Modification of files, listing further nested directories or retrieving file contents was not possible. A valid backend user account is needed to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-4.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-4.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/d9caccb26c954834e7d43fbbe84a3130cc95524a", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/d9caccb26c954834e7d43fbbe84a3130cc95524a" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-005", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-005" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-005", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-005" }, { "reference_url": "https://github.com/advisories/GHSA-r287-hc8j-w56h", "reference_id": "GHSA-r287-hc8j-w56h", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r287-hc8j-w56h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/53719?format=api", "purl": "pkg:composer/typo3/cms@7.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.1" } ], "aliases": [ "GHSA-r287-hc8j-w56h" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7zx9-8afq-y3hc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18358?format=api", "vulnerability_id": "VCID-8jp8-a363-67be", "summary": "Cross-Site Scripting in TYPO3 Backend\nFailing to properly encode user input, some backend components are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-1.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-014", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-014" }, { "reference_url": "https://github.com/advisories/GHSA-86r8-4g3w-7xjp", "reference_id": "GHSA-86r8-4g3w-7xjp", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-86r8-4g3w-7xjp" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "GHSA-86r8-4g3w-7xjp" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8jp8-a363-67be" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/54886?format=api", "vulnerability_id": "VCID-99uu-rfrf-bqa7", "summary": "Typo3 Open Redirect In Frontend Rendering\nThe frontend rendering component in TYPO3 4.5.x before 4.5.39, 4.6.x through 6.2.x before 6.2.9, and 7.x before 7.0.2, allows remote attackers to change URLs to arbitrary domains.\n\nAn attacker could forge a request which modifies anchor only links on the homepage of a TYPO3 installation such that they point to arbitrary domains, if the configuration option `config.prefixLocalAnchors` is used with any possible value. TYPO3 versions 4.6.x and higher are only affected if the homepage is not a shortcut to a different page. As an additional pre-condition, URL rewriting must be enabled in the web server (which it typically is) when using extensions like realurl or cooluri.\n\nInstallations where `config.absRefPrefix` is additionally set to any value are not affected by this vulnerability.\n\nExample of affected configuration:\n\n```php\nconfig.absRefPrefix =\nconfig.prefixLocalAnchors = all \npage = PAGE \npage.10 = TEXT \npage.10.value = <a href=\"#skiplinks\">Skiplinks</a> \n.htaccess:\n\nRewriteCond %{REQUEST_FILENAME} !-f \nRewriteCond %{REQUEST_FILENAME} !-d \nRewriteCond %{REQUEST_FILENAME} !-l \nRewriteRule .* index.php [L] \n```", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00106.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00106.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9508", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52389", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52341", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52391", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52375", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52361", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.524", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52406", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.5226", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52302", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.5233", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52293", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00289", "scoring_system": "epss", "scoring_elements": "0.52346", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9508" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-9508.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-9508.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9508", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9508" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-003" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://github.com/advisories/GHSA-v6xv-rmqc-wcc8", "reference_id": "GHSA-v6xv-rmqc-wcc8", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-v6xv-rmqc-wcc8" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20922?format=api", "purl": "pkg:composer/typo3/cms@6.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20923?format=api", "purl": "pkg:composer/typo3/cms@7.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.2" } ], "aliases": [ "CVE-2014-9508", "GHSA-v6xv-rmqc-wcc8" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-99uu-rfrf-bqa7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7019?format=api", "vulnerability_id": "VCID-adk5-989d-jkc9", "summary": "Uncontrolled Resource Consumption\nDenial of Service in OpenID System Extension.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-002/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-002/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20819?format=api", "purl": "pkg:composer/typo3/cms@6.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.6" } ], "aliases": [ "2014-10-22-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-adk5-989d-jkc9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19103?format=api", "vulnerability_id": "VCID-asym-tgh2-1kg8", "summary": "TYPO3 possible cache poisoning on the homepage when anchors are used\nA request URL with arbitrary arguments, but still pointing to the home page of a TYPO3 installation can be cached if the configuration option config.prefixLocalAnchors is used with the values \"all\" or \"cached\". The impact of this vulnerability is that unfamiliar looking links to the home page can end up in the cache, which leads to a reload of the page in the browser when section links are followed by web page visitors, instead of just directly jumping to the requested section of the page. TYPO3 versions 4.6.x and higher are only affected if the homepage is not a shortcut to a different page.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-12-09-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-12-09-2.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-003" }, { "reference_url": "https://github.com/advisories/GHSA-p84g-j2gh-83g3", "reference_id": "GHSA-p84g-j2gh-83g3", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-p84g-j2gh-83g3" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20922?format=api", "purl": "pkg:composer/typo3/cms@6.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20923?format=api", "purl": "pkg:composer/typo3/cms@7.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.2" } ], "aliases": [ "GHSA-p84g-j2gh-83g3" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-asym-tgh2-1kg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7040?format=api", "vulnerability_id": "VCID-b45y-dr1a-7qd7", "summary": "URL Redirection to Untrusted Site ('Open Redirect')\nPossible link spoofing on the homepage when anchors are used.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20922?format=api", "purl": "pkg:composer/typo3/cms@6.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20923?format=api", "purl": "pkg:composer/typo3/cms@7.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.2" } ], "aliases": [ "2014-12-09-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b45y-dr1a-7qd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7174?format=api", "vulnerability_id": "VCID-b5ht-z6zp-pbht", "summary": "Cross-Site Scripting Vulnerability\nIt has been discovered, that it is possible to forge a link to a backend module, which contains a JavaScript payload. This JavaScript is executed, if an authenticated editor with access to the module follows the link that, is tricked to click on a certain HTML target. Because TYPO3 include a secret token unknown to an attacker in every URL, an exploit would not be feasible for these versions.", "references": [ { "reference_url": "http://packetstormsecurity.com/files/133551/Typo3-CMS-6.2.14-4.5.40-Cross-Site-Scripting.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://packetstormsecurity.com/files/133551/Typo3-CMS-6.2.14-4.5.40-Cross-Site-Scripting.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5956", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38086", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38157", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38165", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38184", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38149", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38124", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.3817", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38035", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38215", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38238", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00169", "scoring_system": "epss", "scoring_elements": "0.38107", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-5956" }, { "reference_url": "http://seclists.org/fulldisclosure/2015/Sep/57", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://seclists.org/fulldisclosure/2015/Sep/57" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2015-5956.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2015-5956.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-5956", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-5956" }, { "reference_url": "https://review.typo3.org/#/c/43122/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://review.typo3.org/#/c/43122/" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-009", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-009" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-009/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-009/" }, { "reference_url": "http://www.securityfocus.com/archive/1/536464/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/archive/1/536464/100/0/threaded" }, { "reference_url": "http://www.securitytracker.com/id/1033551", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id/1033551" }, { "reference_url": "https://github.com/advisories/GHSA-989h-wv8x-933p", "reference_id": "GHSA-989h-wv8x-933p", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-989h-wv8x-933p" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21206?format=api", "purl": "pkg:composer/typo3/cms@6.2.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/21207?format=api", "purl": "pkg:composer/typo3/cms@7.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.4.0" } ], "aliases": [ "CVE-2015-5956", "GHSA-989h-wv8x-933p" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b5ht-z6zp-pbht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7316?format=api", "vulnerability_id": "VCID-b715-6z6c-qqar", "summary": "Uncontrolled Resource Consumption\nDenial of Service attack possibility in TYPO3 component Indexed Search.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-008/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-008/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/21807?format=api", "purl": "pkg:composer/typo3/cms@7.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.4" } ], "aliases": [ "2016-02-23-4" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b715-6z6c-qqar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18774?format=api", "vulnerability_id": "VCID-bck9-34jp-6ydx", "summary": "Information Disclosure in TYPO3 Backend\nThe TYPO3 backend module stores the username of an authenticated backend user in its cache files. By guessing the file path to the cache files it is possible to receive valid backend usernames.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-4.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-4.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-017", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-017" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-017", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-017" }, { "reference_url": "https://github.com/advisories/GHSA-vpr3-rc99-2wpr", "reference_id": "GHSA-vpr3-rc99-2wpr", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-vpr3-rc99-2wpr" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "GHSA-vpr3-rc99-2wpr" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bck9-34jp-6ydx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18301?format=api", "vulnerability_id": "VCID-buax-rz7x-r7c2", "summary": "TYPO3 Multiple Cross-Site Scripting vulnerabilities in frontend\nFailing to properly encode editor input, several frontend components are susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-3.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-3.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-013", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-013" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-013", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-013" }, { "reference_url": "https://github.com/advisories/GHSA-6fc6-cj2j-h22x", "reference_id": "GHSA-6fc6-cj2j-h22x", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-6fc6-cj2j-h22x" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "GHSA-6fc6-cj2j-h22x" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-buax-rz7x-r7c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15561?format=api", "vulnerability_id": "VCID-c6zq-cfg5-u7d9", "summary": "Path Traversal in TYPO3 Core\nDue to a too loose type check in an API method, attackers could bypass the directory traversal check by providing an invalid UTF-8 encoding sequence.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-11-22-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-11-22-2.yaml" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-024", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-024" }, { "reference_url": "https://github.com/advisories/GHSA-gj48-w74w-8gvm", "reference_id": "GHSA-gj48-w74w-8gvm", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-gj48-w74w-8gvm" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23261?format=api", "purl": "pkg:composer/typo3/cms@6.2.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/23262?format=api", "purl": "pkg:composer/typo3/cms@7.6.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/23263?format=api", "purl": "pkg:composer/typo3/cms@8.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.4.1" } ], "aliases": [ "GHSA-gj48-w74w-8gvm", "GMS-2024-342" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c6zq-cfg5-u7d9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7252?format=api", "vulnerability_id": "VCID-cczn-x8q7-k7ba", "summary": "Cross-site Scripting\nCross-Site Scripting vulnerability in typolinks.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "2015-12-15-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cczn-x8q7-k7ba" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7236?format=api", "vulnerability_id": "VCID-cjgc-q6p5-2ydc", "summary": "Cross-site Scripting\nMultiple Cross-Site Scripting vulnerabilities in frontend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-013/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-013/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "2015-12-15-3" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cjgc-q6p5-2ydc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19991?format=api", "vulnerability_id": "VCID-ck23-cxn6-bbf3", "summary": "TYPO3 Frontend vulnerable to Unauthenticated Path Disclosure\nIt has been discovered, that calling a PHP script which is delivered with TYPO3 for testing purposes, discloses the absolute server path to the TYPO3 installation.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-09-08-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-09-08-1.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/ed1e46f89c8e5f699ced245e873d0eff21e5c75e", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/ed1e46f89c8e5f699ced245e873d0eff21e5c75e" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-008", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-008" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-008", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-008" }, { "reference_url": "https://github.com/advisories/GHSA-pqfv-97hj-g97g", "reference_id": "GHSA-pqfv-97hj-g97g", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-pqfv-97hj-g97g" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21206?format=api", "purl": "pkg:composer/typo3/cms@6.2.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/21207?format=api", "purl": "pkg:composer/typo3/cms@7.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.4.0" } ], "aliases": [ "GHSA-pqfv-97hj-g97g" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ck23-cxn6-bbf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7301?format=api", "vulnerability_id": "VCID-dp6j-gnk4-rkd5", "summary": "SQL Injection in dbal.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-016/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-016/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "2016-02-16-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dp6j-gnk4-rkd5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/42097?format=api", "vulnerability_id": "VCID-dsu7-jjjq-f3e1", "summary": "Cleartext storage of session identifier\n### Problem\nUser session identifiers were stored in cleartext - without processing of additional cryptographic hashing algorithms. This vulnerability cannot be exploited directly and occurs in combination with a chained attack - like for instance SQL injection in any other component of the system.\n\n### Solution\nUpdate to TYPO3 versions 6.2.57, 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 that fix the problem described.\n\n### Credits\nThanks to TYPO3 security team member Oliver Hader who reported this issue and to TYPO3 core & security team members Benni Mack & Oliver Hader who fixed the issue.\n\n### References\n* [TYPO3-CORE-SA-2021-006](https://typo3.org/security/advisory/typo3-core-sa-2021-006)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-21339", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32661", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32736", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32671", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32735", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32804", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.3284", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32709", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32659", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32688", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32711", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32672", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.327", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-21339" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21339.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2021-21339.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21339.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2021-21339.yaml" }, { "reference_url": "https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-qx3w-4864-94ch", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-qx3w-4864-94ch" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21339", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21339" }, { "reference_url": "https://packagist.org/packages/typo3/cms-core", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://packagist.org/packages/typo3/cms-core" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2021-006", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2021-006" }, { "reference_url": "https://github.com/advisories/GHSA-qx3w-4864-94ch", "reference_id": "GHSA-qx3w-4864-94ch", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-qx3w-4864-94ch" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/569418?format=api", "purl": "pkg:composer/typo3/cms@6.2.57", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.57" }, { "url": "http://public2.vulnerablecode.io/api/packages/37610?format=api", "purl": "pkg:composer/typo3/cms@7.6.51", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-n15v-ta9h-6ffb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.51" }, { "url": "http://public2.vulnerablecode.io/api/packages/37612?format=api", "purl": "pkg:composer/typo3/cms@8.7.40", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-s64f-x81f-b7ce" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.40" }, { "url": "http://public2.vulnerablecode.io/api/packages/75853?format=api", "purl": "pkg:composer/typo3/cms@9.5.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.25" }, { "url": "http://public2.vulnerablecode.io/api/packages/75849?format=api", "purl": "pkg:composer/typo3/cms@10.4.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/75850?format=api", "purl": "pkg:composer/typo3/cms@11.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-uyeu-a3xr-fkh4" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1" } ], "aliases": [ "CVE-2021-21339", "GHSA-qx3w-4864-94ch" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dsu7-jjjq-f3e1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19091?format=api", "vulnerability_id": "VCID-f4pm-9tq5-q3ch", "summary": "Duplicate Advisory: TYPO3 Cross-Site Scripting vulnerability in typolinks\n## Duplicate Advisory\nThis advisory has been withdrawn because it is a duplicate of GHSA-j5v7-9xr5-m7gx. This link is maintained to preserve external references.\n\n## Original Description\n\nAll link fields within the TYPO3 installation are vulnerable to Cross-Site Scripting as authorized editors can insert javascript commands by using the url scheme `javascript:`.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-2.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/25a1473907f0f4b2bb0147c661981940c57a4555", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/25a1473907f0f4b2bb0147c661981940c57a4555" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/de1755a6dcff9b037c6d5a1fa340ba100aff054a", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/de1755a6dcff9b037c6d5a1fa340ba100aff054a" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-012", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-012" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012" }, { "reference_url": "https://github.com/advisories/GHSA-75mx-chcf-2q32", "reference_id": "GHSA-75mx-chcf-2q32", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-75mx-chcf-2q32" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "GHSA-75mx-chcf-2q32" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f4pm-9tq5-q3ch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/33212?format=api", "vulnerability_id": "VCID-f963-qur3-2qb7", "summary": "Cross-Site Scripting in Fluid view helpers\n> ### Meta\n> * CVSS: `CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:F/RL:O/RC:C` (5.7)\n> * CWE-79\n\n### Problem\nIt has been discovered that system extension Fluid (`typo3/cms-fluid`) of the TYPO3 core is vulnerable to cross-site scripting passing user-controlled data as argument to Fluid view helpers.\n\n```\n<f:form ... fieldNamePrefix=\"{payload}\" />\n<f:be.labels.csh ... label=\"{payload}\" />\n<f:be.menus.actionMenu ... label=\"{payload}\" />\n```\n\n### Solution\nUpdate to TYPO3 versions 9.5.23 or 10.4.10 that fix the problem described.\n\n### Credits\nThanks to TYPO3 security team member Oliver Hader who reported this issue and to TYPO3 security team members Helmut Hummel & Oliver Hader who fixed the issue.\n\n### References\n* [TYPO3-CORE-SA-2020-010](https://typo3.org/security/advisory/typo3-core-sa-2020-010)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-26227", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58104", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58115", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.5814", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58139", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58137", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.57999", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58133", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58083", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58079", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58109", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.5813", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00359", "scoring_system": "epss", "scoring_elements": "0.58153", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-26227" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2020-26227.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2020-26227.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2020-26227.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2020-26227.yaml" }, { "reference_url": "https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-vqqx-jw6p-q3rf", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-vqqx-jw6p-q3rf" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26227", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26227" }, { "reference_url": "https://packagist.org/packages/typo3/cms-core", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://packagist.org/packages/typo3/cms-core" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2020-010", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2020-010" }, { "reference_url": "https://github.com/advisories/GHSA-vqqx-jw6p-q3rf", "reference_id": "GHSA-vqqx-jw6p-q3rf", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-vqqx-jw6p-q3rf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22097?format=api", "purl": "pkg:composer/typo3/cms@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-f1rq-qudk-zkf2" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/73051?format=api", "purl": "pkg:composer/typo3/cms@8.7.38", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.38" }, { "url": "http://public2.vulnerablecode.io/api/packages/73050?format=api", "purl": "pkg:composer/typo3/cms@9.5.23", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.23" }, { "url": "http://public2.vulnerablecode.io/api/packages/73049?format=api", "purl": "pkg:composer/typo3/cms@10.4.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-a89c-jvwa-6kh5" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dhrm-uxuv-zfaj" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.10" } ], "aliases": [ "CVE-2020-26227", "GHSA-vqqx-jw6p-q3rf" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f963-qur3-2qb7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7408?format=api", "vulnerability_id": "VCID-fber-yp9q-f7dr", "summary": "Improper Access Control\nMissing Access Check in TYPO3 CMS.", "references": [ { "reference_url": "https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22346?format=api", "purl": "pkg:composer/typo3/cms@6.2.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.25" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22344?format=api", "purl": "pkg:composer/typo3/cms@7.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/22345?format=api", "purl": "pkg:composer/typo3/cms@8.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.1.1" } ], "aliases": [ "2016-05-24-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fber-yp9q-f7dr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7357?format=api", "vulnerability_id": "VCID-fqbx-7xyq-fkav", "summary": "Improper Privilege Management\nPrivilege Escalation in TYPO3 CMS.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-012/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-012/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22105?format=api", "purl": "pkg:composer/typo3/cms@7.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/22107?format=api", "purl": "pkg:composer/typo3/cms@8.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1" } ], "aliases": [ "2016-04-12-4" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fqbx-7xyq-fkav" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7314?format=api", "vulnerability_id": "VCID-g4ak-ertr-rya6", "summary": "Improper Restriction of XML External Entity Reference\nXML External Entity (XXE) Processing in TYPO3 Core.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-005/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-005/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/21807?format=api", "purl": "pkg:composer/typo3/cms@7.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.4" } ], "aliases": [ "2016-02-23-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g4ak-ertr-rya6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55045?format=api", "vulnerability_id": "VCID-gcnj-6qb6-pbgz", "summary": "TYPO3 Directory Traversal on ZIP extraction\nAn issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the extraction of manually uploaded ZIP archives in Extension Manager is vulnerable to directory traversal. Admin privileges are required in order to exploit this vulnerability. (In v9 LTS and later, System Maintainer privileges are also required.)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19848", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59108", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.58989", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59064", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59087", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59051", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59102", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59106", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59125", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59124", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59128", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19848" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19848.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19848.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19848.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19848.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19848", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19848" }, { "reference_url": "https://review.typo3.org/q/%2522Resolves:+%252388764%2522+topic:security", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://review.typo3.org/q/%2522Resolves:+%252388764%2522+topic:security" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2019-024", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2019-024" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2019-024/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/security/advisory/typo3-core-sa-2019-024/" }, { "reference_url": "https://github.com/advisories/GHSA-77p4-wfr8-977w", "reference_id": "GHSA-77p4-wfr8-977w", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-77p4-wfr8-977w" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58878?format=api", "purl": "pkg:composer/typo3/cms@8.7.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/58879?format=api", "purl": "pkg:composer/typo3/cms@9.5.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2mn6-mdmz-4yd9" }, { "vulnerability": "VCID-543x-cnbz-1kb9" }, { "vulnerability": "VCID-58js-jzm4-4fc7" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5kzs-ex81-bbaj" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-7kjw-j8st-mqfr" }, { "vulnerability": "VCID-a49c-fqrj-nbb3" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-phgh-sd4m-zbdx" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-sw7v-fbjk-13hy" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/82226?format=api", "purl": "pkg:composer/typo3/cms@10.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-2mn6-mdmz-4yd9" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-543x-cnbz-1kb9" }, { "vulnerability": "VCID-58js-jzm4-4fc7" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5kzs-ex81-bbaj" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-7kjw-j8st-mqfr" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-a49c-fqrj-nbb3" }, { "vulnerability": "VCID-a89c-jvwa-6kh5" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-cdjv-fp71-y3dv" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dhrm-uxuv-zfaj" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-phgh-sd4m-zbdx" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-sw7v-fbjk-13hy" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-usmv-r64u-m7cb" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2" } ], "aliases": [ "CVE-2019-19848", "GHSA-77p4-wfr8-977w" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gcnj-6qb6-pbgz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18440?format=api", "vulnerability_id": "VCID-gezz-pvpj-p3c6", "summary": "Missing Access Check in TYPO3 CMS\nExtbase request handling fails to implement a proper access check for requested controller/ action combinations, which makes it possible for an attacker to execute arbitrary Extbase actions by crafting a special request. To successfully exploit this vulnerability, an attacker must have access to at least one Extbase plugin or module action in a TYPO3 installation. The missing access check inevitably leads to information disclosure or remote code execution, depending on the action that an attacker is able to execute.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-05-24-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-05-24-1.yaml" }, { "reference_url": "https://web.archive.org/web/20160606110438/https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160606110438/https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms" }, { "reference_url": "https://github.com/advisories/GHSA-gwfx-p7mr-f92v", "reference_id": "GHSA-gwfx-p7mr-f92v", "reference_type": "", "scores": [ { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-gwfx-p7mr-f92v" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22346?format=api", "purl": "pkg:composer/typo3/cms@6.2.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.25" }, { "url": "http://public2.vulnerablecode.io/api/packages/22344?format=api", "purl": "pkg:composer/typo3/cms@7.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/22345?format=api", "purl": "pkg:composer/typo3/cms@8.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.1.1" } ], "aliases": [ "GHSA-gwfx-p7mr-f92v" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gezz-pvpj-p3c6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55146?format=api", "vulnerability_id": "VCID-gnna-yjv5-cya2", "summary": "TYPO3 allows remote attackers to embed Flash videos from external domain\nThe Flvplayer component in TYPO3 6.2.x before 6.2.16 allows remote attackers to embed Flash videos from external domains via unspecified vectors, aka \"Cross-Site Flashing.\"", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8760", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50818", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50881", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50903", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50896", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50858", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50875", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50843", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50761", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50897", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50855", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50857", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.508", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8760" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/29ae05c04cb48d4031d323f17d8f2b68b27af353", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/29ae05c04cb48d4031d323f17d8f2b68b27af353" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8760", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:P/A:N" }, { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8760" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-014", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-014" }, { "reference_url": "https://web.archive.org/web/20160621232021/http://www.securityfocus.com/bid/79210", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160621232021/http://www.securityfocus.com/bid/79210" }, { "reference_url": "https://web.archive.org/web/20161012163613/http://www.securitytracker.com/id/1034485", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20161012163613/http://www.securitytracker.com/id/1034485" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/" }, { "reference_url": "http://www.securityfocus.com/bid/79210", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/79210" }, { "reference_url": "http://www.securitytracker.com/id/1034485", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1034485" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*" }, { "reference_url": "https://github.com/advisories/GHSA-3f58-74qw-ph75", "reference_id": "GHSA-3f58-74qw-ph75", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-3f58-74qw-ph75" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" } ], "aliases": [ "CVE-2015-8760", "GHSA-3f58-74qw-ph75" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gnna-yjv5-cya2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7360?format=api", "vulnerability_id": "VCID-gspd-apwy-efgu", "summary": "Cross-site Scripting\nCross-Site Scripting in TYPO3 Backend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-009/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-009/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22105?format=api", "purl": "pkg:composer/typo3/cms@7.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/22107?format=api", "purl": "pkg:composer/typo3/cms@8.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1" } ], "aliases": [ "2016-04-12-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gspd-apwy-efgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7448?format=api", "vulnerability_id": "VCID-h2dd-7b1r-k7bs", "summary": "SQL Injection in TYPO3 Frontend Login.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-016" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22097?format=api", "purl": "pkg:composer/typo3/cms@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-f1rq-qudk-zkf2" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.0" } ], "aliases": [ "2016-07-19-3" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h2dd-7b1r-k7bs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7407?format=api", "vulnerability_id": "VCID-h958-d3pm-kfcs", "summary": "Missing Access Check\nExtbase request handling fails to implement a proper access check for requested controller/ action combinations, which makes it possible for an attacker to execute arbitrary Extbase actions by crafting a special request. To successfully exploit this vulnerability, an attacker must have access to at least one Extbase plugin or module action in a TYPO3 installation. The missing access check inevitably leads to information disclosure or remote code execution, depending on the action that an attacker is able to execute.", "references": [ { "reference_url": "https://github.com/TYPO3/TYPO3.CMS/commit/21ed4054212babb7ec75d80a24f95c6ba25bd2fb", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/TYPO3/TYPO3.CMS/commit/21ed4054212babb7ec75d80a24f95c6ba25bd2fb" }, { "reference_url": "https://github.com/TYPO3/TYPO3.CMS/commit/404f09d491c96b294ded5e2741277dfbeba92807", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/TYPO3/TYPO3.CMS/commit/404f09d491c96b294ded5e2741277dfbeba92807" }, { "reference_url": "https://github.com/TYPO3/TYPO3.CMS/commit/c10db60dfc87c33542c418fa316754a5309c3e26", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/TYPO3/TYPO3.CMS/commit/c10db60dfc87c33542c418fa316754a5309c3e26" }, { "reference_url": "https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22343?format=api", "purl": "pkg:composer/typo3/cms@6.2.24", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.24" }, { "url": "http://public2.vulnerablecode.io/api/packages/22344?format=api", "purl": "pkg:composer/typo3/cms@7.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/22345?format=api", "purl": "pkg:composer/typo3/cms@8.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.1.1" } ], "aliases": [ "TYPO3-CORE-SA-2016-013" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h958-d3pm-kfcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7235?format=api", "vulnerability_id": "VCID-heyy-me7v-jyf5", "summary": "Cross-Site Flashing\nThe flashplayer misses to validate flash and image files. Therefore it is possible to embed flash videos from external domains.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "TYPO3-CORE-SA-2015-014" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-heyy-me7v-jyf5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18613?format=api", "vulnerability_id": "VCID-hkk9-f78q-xqd2", "summary": "TYPO3 Cross-Site Scripting (XSS) in form component\nFailing to sanitize content from unauthenticated website visitors, the form component is susceptible to Cross-Site Scripting.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-4.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-4.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-004", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-004" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-004", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-004" }, { "reference_url": "https://github.com/advisories/GHSA-5j86-5xvg-7q93", "reference_id": "GHSA-5j86-5xvg-7q93", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5j86-5xvg-7q93" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" } ], "aliases": [ "GHSA-5j86-5xvg-7q93" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hkk9-f78q-xqd2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19876?format=api", "vulnerability_id": "VCID-hpju-vhzg-jyes", "summary": "TYPO3 Arbitrary Shell Execution in Swiftmailer library\nThe swiftmailer library in use allows to execute arbitrary shell commands if the \"From\" header comes from a non-trusted source and no \"Return-Path\" is configured. Affected are only TYPO3 installation the configuration option\n```\n$GLOBALS['TYPO3_CONF_VARS']['MAIL']['transport'] \n```\nis set to \"sendmail\". Installations with the default configuration are not affected.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-10-22-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-10-22-2.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/313c4bba53dd78803a9ee97c1f6f1d450a521521", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/313c4bba53dd78803a9ee97c1f6f1d450a521521" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/6af37574e063929eaab066dd9920b1fa8815da12", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/6af37574e063929eaab066dd9920b1fa8815da12" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/dbdd9f22b7cebf43f2e4abdb2a6a8a9f32af8f61", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/dbdd9f22b7cebf43f2e4abdb2a6a8a9f32af8f61" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/ead183c5acf25b7e1121adee5a5860bd9b5f05a2", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/ead183c5acf25b7e1121adee5a5860bd9b5f05a2" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-002" }, { "reference_url": "https://github.com/advisories/GHSA-45xg-4w5x-j429", "reference_id": "GHSA-45xg-4w5x-j429", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-45xg-4w5x-j429" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20819?format=api", "purl": "pkg:composer/typo3/cms@6.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.6" } ], "aliases": [ "GHSA-45xg-4w5x-j429" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hpju-vhzg-jyes" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18263?format=api", "vulnerability_id": "VCID-hv3n-j8ck-1ufx", "summary": "TYPO3 Remote Code Execution in third party library swiftmailer\nTYPO3 uses the package swiftmailer/swiftmailer for mail actions. This package is known to be vulnerable to Remote Code Execution.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2017-01-03-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2017-01-03-1.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2017-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2017-001" }, { "reference_url": "https://github.com/advisories/GHSA-g4pf-3jvq-2gcw", "reference_id": "GHSA-g4pf-3jvq-2gcw", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-g4pf-3jvq-2gcw" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23748?format=api", "purl": "pkg:composer/typo3/cms@6.2.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/23749?format=api", "purl": "pkg:composer/typo3/cms@7.6.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-sxr7-cutf-8kh6" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/24659?format=api", "purl": "pkg:composer/typo3/cms@8.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jp6-qjpr-xfev" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-9jj4-ec9n-qbhs" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-byp6-edft-fbhm" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wkm6-cgc8-bfa8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.5.1" } ], "aliases": [ "GHSA-g4pf-3jvq-2gcw" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hv3n-j8ck-1ufx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7508?format=api", "vulnerability_id": "VCID-jmu3-5k7e-x7ch", "summary": "Failing to properly encode user input, the page module is vulnerable to Cross-Site Scripting. A valid backend user account with permissions to edit plugins is needed to exploit this vulnerability.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-021", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-021" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22684?format=api", "purl": "pkg:composer/typo3/cms@6.2.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22685?format=api", "purl": "pkg:composer/typo3/cms@7.6.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/22097?format=api", "purl": "pkg:composer/typo3/cms@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-f1rq-qudk-zkf2" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23167?format=api", "purl": "pkg:composer/typo3/cms@8.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.3.1" } ], "aliases": [ "TYPO3-CORE-SA-2016-021" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jmu3-5k7e-x7ch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7505?format=api", "vulnerability_id": "VCID-jqx9-41zx-dbcy", "summary": "Cache Flooding in Frontend\nLinks with a valid cHash argument lead to newly generated page cache entries. Because the cHash is not bound to a specific page, attackers could use valid cHash arguments for multiple pages, leading to additional useless page cache entries. Depending on the number of pages in the system and the number of available valid links with a cHash, attackers could add a considerable amount of additional cache entries, which in the end exceed storage limits and thus could lead to the system not responding any more. This means the Cache Flooding attack potentially could lead to a successful Denial of Service (DoS) attack.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-022", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-022" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22684?format=api", "purl": "pkg:composer/typo3/cms@6.2.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22685?format=api", "purl": "pkg:composer/typo3/cms@7.6.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/22097?format=api", "purl": "pkg:composer/typo3/cms@8.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-f1rq-qudk-zkf2" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23167?format=api", "purl": "pkg:composer/typo3/cms@8.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.3.1" } ], "aliases": [ "TYPO3-CORE-SA-2016-022" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jqx9-41zx-dbcy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19008?format=api", "vulnerability_id": "VCID-kgcq-paqm-9ya6", "summary": "TYPO3 Brute Force Protection Bypass in backend login\nThe backend login has a basic brute force protection implementation which pauses for 5 seconds if wrong credentials are given. This pause however could be bypassed by forging a special request, making brute force attacks on backend editor credentials more feasible.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-5.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-5.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/0b67290bbd941c07b0101bbfd6c7aadcbb93c75c", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/0b67290bbd941c07b0101bbfd6c7aadcbb93c75c" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/0f3fb37674688aba5a44ca6f5df7f8a327a5b5f6", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/0f3fb37674688aba5a44ca6f5df7f8a327a5b5f6" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-006", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-006" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-006", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-006" }, { "reference_url": "https://github.com/advisories/GHSA-jqr8-q455-xx45", "reference_id": "GHSA-jqr8-q455-xx45", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jqr8-q455-xx45" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/53719?format=api", "purl": "pkg:composer/typo3/cms@7.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.1" } ], "aliases": [ "GHSA-jqr8-q455-xx45" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kgcq-paqm-9ya6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7131?format=api", "vulnerability_id": "VCID-kpze-14jy-xud9", "summary": "Cross-site Scripting\nCross-Site Scripting exploitable by Editors.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-004/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-004/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/21152?format=api", "purl": "pkg:composer/typo3/cms@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.0" } ], "aliases": [ "2015-07-01-3" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kpze-14jy-xud9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7239?format=api", "vulnerability_id": "VCID-kqbk-4q4z-nkec", "summary": "Multiple Cross-Site Scripting vulnerabilities in frontend\nFailing to properly encode editor input, several frontend components are susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-013/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-013/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "TYPO3-CORE-SA-2015-013" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kqbk-4q4z-nkec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7790?format=api", "vulnerability_id": "VCID-kuq7-h4ex-tkgc", "summary": "Cross-Site Scripting vulnerability\nTYPO3 is vulnerable to Cross-Site Scripting.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4056", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.54053", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.53943", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.5396", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.53987", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.53963", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.54015", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.54062", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.54043", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.54025", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.54065", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00308", "scoring_system": "epss", "scoring_elements": "0.5407", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4056" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://labs.integrity.pt/advisories/cve-pending-stored-cross-site-scripting-in-typo3-bookmarks", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://labs.integrity.pt/advisories/cve-pending-stored-cross-site-scripting-in-typo3-bookmarks" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4056", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4056" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-006", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-006" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-006/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2016/04/21/1", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2016/04/21/1" }, { "reference_url": "https://github.com/advisories/GHSA-ffcm-vhcw-p32r", "reference_id": "GHSA-ffcm-vhcw-p32r", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-ffcm-vhcw-p32r" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" } ], "aliases": [ "CVE-2016-4056", "GHSA-ffcm-vhcw-p32r" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kuq7-h4ex-tkgc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7447?format=api", "vulnerability_id": "VCID-m3nf-1qbv-d3dj", "summary": "Deserialization of Untrusted Data\nInsecure Unserialize in TYPO3 Import/Export.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-015", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-015" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "2016-07-19-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m3nf-1qbv-d3dj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18817?format=api", "vulnerability_id": "VCID-m43j-8zeh-47gz", "summary": "Cross-Site Scripting (XSS) in TYPO3 component Backend\nFailing to properly encode incoming data, the bookmark toolbar is susceptible to Cross-Site Scripting.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-2.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-006", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-006" }, { "reference_url": "https://github.com/advisories/GHSA-3jxq-5xhh-9jr3", "reference_id": "GHSA-3jxq-5xhh-9jr3", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-3jxq-5xhh-9jr3" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" } ], "aliases": [ "GHSA-3jxq-5xhh-9jr3" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m43j-8zeh-47gz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18339?format=api", "vulnerability_id": "VCID-mc8q-fhyf-ekfj", "summary": "TYPO3 is susceptible to Cross-Site Flashing\nThe flashplayer misses to validate flash and image files. Therefore it is possible to embed flash videos from external domains.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-4.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-4.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-014", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-014" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014" }, { "reference_url": "https://github.com/advisories/GHSA-qrxh-46mr-pr7q", "reference_id": "GHSA-qrxh-46mr-pr7q", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-qrxh-46mr-pr7q" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" } ], "aliases": [ "GHSA-qrxh-46mr-pr7q" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mc8q-fhyf-ekfj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7298?format=api", "vulnerability_id": "VCID-mhud-kq57-nka3", "summary": "Cross-site Scripting\nCross-Site Scripting in link validator component.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-002/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-002/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/21662?format=api", "purl": "pkg:composer/typo3/cms@7.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.3" } ], "aliases": [ "2016-02-16-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mhud-kq57-nka3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18501?format=api", "vulnerability_id": "VCID-mqk6-z77g-bfdv", "summary": "Cross-Site Scripting (XSS) in TYPO3 Backend\nFailing to properly encode user input, the page module is vulnerable to Cross-Site Scripting. A valid backend user account with permissions to edit plugins is needed to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-09-14-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-09-14-1.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-021", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-021" }, { "reference_url": "https://github.com/advisories/GHSA-hq37-rfjc-mr8h", "reference_id": "GHSA-hq37-rfjc-mr8h", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-hq37-rfjc-mr8h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22684?format=api", "purl": "pkg:composer/typo3/cms@6.2.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/22685?format=api", "purl": "pkg:composer/typo3/cms@7.6.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/23167?format=api", "purl": "pkg:composer/typo3/cms@8.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.3.1" } ], "aliases": [ "GHSA-hq37-rfjc-mr8h" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mqk6-z77g-bfdv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18717?format=api", "vulnerability_id": "VCID-n61z-6v8a-hygf", "summary": "Cross-Site Scripting (XSS) vulnerability in typolinks\nAll link fields within the TYPO3 installation are vulnerable to Cross-Site Scripting as authorized editors can insert data commands by using the url scheme \"data:\".", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-5.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-5.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-018", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-018" }, { "reference_url": "https://github.com/advisories/GHSA-p5c5-gmj4-g48f", "reference_id": "GHSA-p5c5-gmj4-g48f", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-p5c5-gmj4-g48f" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "GHSA-p5c5-gmj4-g48f" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n61z-6v8a-hygf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7017?format=api", "vulnerability_id": "VCID-nbzv-ppzf-53ae", "summary": "Code Injection\nArbitrary Shell Execution in Swiftmailer library.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-002/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-002/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20819?format=api", "purl": "pkg:composer/typo3/cms@6.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.6" } ], "aliases": [ "2014-10-22-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nbzv-ppzf-53ae" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7130?format=api", "vulnerability_id": "VCID-ne8w-dpjw-7qf1", "summary": "Improper Access Control\nAccess bypass when editing file metadata.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-002/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-002/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/21152?format=api", "purl": "pkg:composer/typo3/cms@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.0" } ], "aliases": [ "2015-07-01-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ne8w-dpjw-7qf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7553?format=api", "vulnerability_id": "VCID-nnh9-udcj-m7fv", "summary": "Path Traversal\nDue to a too loose type check in an API method, attackers could bypass the directory traversal check by providing an invalid UTF-8 encoding sequence.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-024", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-024" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23261?format=api", "purl": "pkg:composer/typo3/cms@6.2.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23262?format=api", "purl": "pkg:composer/typo3/cms@7.6.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/23263?format=api", "purl": "pkg:composer/typo3/cms@8.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.4.1" } ], "aliases": [ "TYPO3-CORE-SA-2016-024" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nnh9-udcj-m7fv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18979?format=api", "vulnerability_id": "VCID-npn5-rand-q3dg", "summary": "Authentication Bypass in TYPO3 CMS\nThe default authentication service misses to invalidate empty strings as password. Therefore it is possible to authenticate backend and frontend users without password set in the database.\nNote: TYPO3 does not allow to create user accounts without a password. Your TYPO3 installation might only be affected if there is a third party component creating user accounts without password by directly manipulating the database.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-3.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-3.yaml" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-011", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-011" }, { "reference_url": "https://github.com/advisories/GHSA-6xh8-8pfv-53vx", "reference_id": "GHSA-6xh8-8pfv-53vx", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-6xh8-8pfv-53vx" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/22105?format=api", "purl": "pkg:composer/typo3/cms@7.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/22107?format=api", "purl": "pkg:composer/typo3/cms@8.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1" } ], "aliases": [ "GHSA-6xh8-8pfv-53vx" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-npn5-rand-q3dg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8948?format=api", "vulnerability_id": "VCID-nwxj-3ajk-rkh5", "summary": "Cross-site Scripting\nThe page module in TYPO3 is vulnerable to XSS via `$GLOBALS['TYPO3_CONF_VARS']['SYS']['sitename']`, as demonstrated by an admin entering a crafted site name during the installation process.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6905", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84681", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84584", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84599", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84619", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84621", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84642", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84649", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84666", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84662", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84657", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84678", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02274", "scoring_system": "epss", "scoring_elements": "0.84679", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-6905" }, { "reference_url": "https://forge.typo3.org/issues/84191", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://forge.typo3.org/issues/84191" }, { "reference_url": "https://github.com/pradeepjairamani/TYPO3-XSS-POC", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/pradeepjairamani/TYPO3-XSS-POC" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/d2c0ea7db3b31a796a82f9d39f77f9983beb7c35", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/d2c0ea7db3b31a796a82f9d39f77f9983beb7c35" }, { "reference_url": "http://www.securitytracker.com/id/1040755", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id/1040755" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6905", "reference_id": "CVE-2018-6905", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6905" }, { "reference_url": "https://github.com/advisories/GHSA-3w22-wrwx-2r75", "reference_id": "GHSA-3w22-wrwx-2r75", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-3w22-wrwx-2r75" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/27471?format=api", "purl": "pkg:composer/typo3/cms@8.7.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jp6-qjpr-xfev" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-9jj4-ec9n-qbhs" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-byp6-edft-fbhm" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wkm6-cgc8-bfa8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/27472?format=api", "purl": "pkg:composer/typo3/cms@9.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jp6-qjpr-xfev" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-2mn6-mdmz-4yd9" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-4mkw-tv16-jyca" }, { "vulnerability": "VCID-543x-cnbz-1kb9" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-58js-jzm4-4fc7" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5kzs-ex81-bbaj" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-9jj4-ec9n-qbhs" }, { "vulnerability": "VCID-a49c-fqrj-nbb3" }, { "vulnerability": "VCID-anfj-pmkg-skhe" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-byp6-edft-fbhm" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dcy2-efyc-6qgq" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-kc67-7kf7-s3d7" }, { "vulnerability": "VCID-kj9x-psfz-2ug1" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-p715-yexd-jfgc" }, { "vulnerability": "VCID-phgh-sd4m-zbdx" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-raxk-rm9v-hubn" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-sw7v-fbjk-13hy" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-u9bx-8e86-wbew" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wkm6-cgc8-bfa8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xtdg-uj46-rkcm" }, { "vulnerability": "VCID-xwc2-z7hx-4qa7" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/84142?format=api", "purl": "pkg:composer/typo3/cms@9.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jp6-qjpr-xfev" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-2mn6-mdmz-4yd9" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-4mkw-tv16-jyca" }, { "vulnerability": "VCID-543x-cnbz-1kb9" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-58js-jzm4-4fc7" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5kzs-ex81-bbaj" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-9jj4-ec9n-qbhs" }, { "vulnerability": "VCID-a49c-fqrj-nbb3" }, { "vulnerability": "VCID-anfj-pmkg-skhe" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-byp6-edft-fbhm" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dcy2-efyc-6qgq" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-kc67-7kf7-s3d7" }, { "vulnerability": "VCID-kj9x-psfz-2ug1" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-p715-yexd-jfgc" }, { "vulnerability": "VCID-phgh-sd4m-zbdx" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-raxk-rm9v-hubn" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-sw7v-fbjk-13hy" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-u9bx-8e86-wbew" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wkm6-cgc8-bfa8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xtdg-uj46-rkcm" }, { "vulnerability": "VCID-xwc2-z7hx-4qa7" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.2.0" } ], "aliases": [ "CVE-2018-6905", "GHSA-3w22-wrwx-2r75" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nwxj-3ajk-rkh5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18723?format=api", "vulnerability_id": "VCID-p1u9-66hm-47er", "summary": "Privilege Escalation in TYPO3 CMS\nThe workspace/ version preview link created by a privileged (backend) user could be abused to obtain certain editing permission, if the admin panel is configured to be shown. A valid preview link is required to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-4.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-4.yaml" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-012", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-012" }, { "reference_url": "https://github.com/advisories/GHSA-v5jp-4h2p-j2p4", "reference_id": "GHSA-v5jp-4h2p-j2p4", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-v5jp-4h2p-j2p4" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/22105?format=api", "purl": "pkg:composer/typo3/cms@7.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/22107?format=api", "purl": "pkg:composer/typo3/cms@8.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1" } ], "aliases": [ "GHSA-v5jp-4h2p-j2p4" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p1u9-66hm-47er" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18260?format=api", "vulnerability_id": "VCID-p545-vwe6-9kfr", "summary": "Insecure Unserialize in TYPO3 Import/Export\nFailing to properly validate incoming import data, the Import/Export component is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-2.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-015", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-015" }, { "reference_url": "https://github.com/advisories/GHSA-xvcp-33rc-j8gq", "reference_id": "GHSA-xvcp-33rc-j8gq", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-xvcp-33rc-j8gq" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "GHSA-xvcp-33rc-j8gq" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p545-vwe6-9kfr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55325?format=api", "vulnerability_id": "VCID-pgzu-kxuj-j3fh", "summary": "Typo3 XSS Vulnerability\nMultiple cross-site scripting (XSS) vulnerabilities in unspecified backend components in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allow remote authenticated editors to inject arbitrary web script or HTML via unknown vectors.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8755", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44791", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44726", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44806", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44827", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44767", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.4482", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44822", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44839", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44808", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44809", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44863", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00222", "scoring_system": "epss", "scoring_elements": "0.44856", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8755" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8755", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:P/A:N" }, { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8755" }, { "reference_url": "https://web.archive.org/web/20160621193435/http://www.securityfocus.com/bid/79236", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160621193435/http://www.securityfocus.com/bid/79236" }, { "reference_url": "https://web.archive.org/web/20161012163838/http://www.securitytracker.com/id/1034483", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20161012163838/http://www.securitytracker.com/id/1034483" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/" }, { "reference_url": "http://www.securityfocus.com/bid/79236", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/79236" }, { "reference_url": "http://www.securitytracker.com/id/1034483", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1034483" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.3.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.3.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.3.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://github.com/advisories/GHSA-56f9-5563-m2h7", "reference_id": "GHSA-56f9-5563-m2h7", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-56f9-5563-m2h7" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "CVE-2015-8755", "GHSA-56f9-5563-m2h7" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pgzu-kxuj-j3fh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7552?format=api", "vulnerability_id": "VCID-prbd-r82t-87dm", "summary": "Insecure Unserialize in TYPO3 Backend\nFailing to properly validate incoming data, the suggest wizard is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-023", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-023" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23261?format=api", "purl": "pkg:composer/typo3/cms@6.2.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23262?format=api", "purl": "pkg:composer/typo3/cms@7.6.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/23263?format=api", "purl": "pkg:composer/typo3/cms@8.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.4.1" } ], "aliases": [ "TYPO3-CORE-SA-2016-023" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-prbd-r82t-87dm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18811?format=api", "vulnerability_id": "VCID-q6dx-uskc-y3hs", "summary": "Multiple Cross-Site Scripting vulnerabilities in TYPO3 backend\nFailing to properly encode user input, several backend components are susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML or JavaScript.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-1.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-011", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-011" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011" }, { "reference_url": "https://github.com/advisories/GHSA-5cxf-xx9j-54jc", "reference_id": "GHSA-5cxf-xx9j-54jc", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5cxf-xx9j-54jc" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "GHSA-5cxf-xx9j-54jc" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q6dx-uskc-y3hs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7765?format=api", "vulnerability_id": "VCID-q9ak-qcq6-qfhy", "summary": "Code Injection\nRemote Code Execution in third party library swiftmailer.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2017-001/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2017-001/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/23748?format=api", "purl": "pkg:composer/typo3/cms@6.2.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/23749?format=api", "purl": "pkg:composer/typo3/cms@7.6.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-sxr7-cutf-8kh6" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/23750?format=api", "purl": "pkg:composer/typo3/cms@8.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jp6-qjpr-xfev" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-9jj4-ec9n-qbhs" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-byp6-edft-fbhm" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wkm6-cgc8-bfa8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zkea-ge1t-z7gn" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.5.0" } ], "aliases": [ "2017-01-03-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q9ak-qcq6-qfhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7255?format=api", "vulnerability_id": "VCID-qemc-8kj8-r3cd", "summary": "Cross-site Scripting\nMultiple Cross-Site Scripting vulnerabilities in TYPO3 backend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "2015-12-15-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qemc-8kj8-r3cd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7254?format=api", "vulnerability_id": "VCID-re8y-zb3u-57h2", "summary": "Cross-site Scripting\nTYPO3 is susceptible to Cross-Site Flashing.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "2015-12-15-4" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-re8y-zb3u-57h2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/57345?format=api", "vulnerability_id": "VCID-re9h-ze98-rbhu", "summary": "Typo3 Cross-Site Scripting in Flash component (ELTS)\nTYPO3 6.2.0 to 6.2.38 ELTS and 7.0.0 to 7.1.0 included a vulnerable external component, which could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8091", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95573", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95524", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95532", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95538", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95542", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95549", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95552", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95556", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95557", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95559", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.20517", "scoring_system": "epss", "scoring_elements": "0.95567", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8091" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/blob/4cb53e828bd5138d180cdf9cac1ccf7fd31086d2/typo3/sysext/core/Documentation/Changelog/7.2/Breaking-65962-WebSVGLibraryAndAPIRemoved.rst", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/blob/4cb53e828bd5138d180cdf9cac1ccf7fd31086d2/typo3/sysext/core/Documentation/Changelog/7.2/Breaking-65962-WebSVGLibraryAndAPIRemoved.rst" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/482e2e992f80f5e38cb48fcaea40fd9812a5252c", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/482e2e992f80f5e38cb48fcaea40fd9812a5252c" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8091", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8091" }, { "reference_url": "https://typo3.org/security/advisory/typo3-psa-2019-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-psa-2019-003" }, { "reference_url": "https://typo3.org/security/advisory/typo3-psa-2019-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/security/advisory/typo3-psa-2019-003/" }, { "reference_url": "https://www.purplemet.com/blog/typo3-xss-vulnerability", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.purplemet.com/blog/typo3-xss-vulnerability" }, { "reference_url": "https://github.com/advisories/GHSA-qvhv-pwww-53jj", "reference_id": "GHSA-qvhv-pwww-53jj", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-qvhv-pwww-53jj" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/83395?format=api", "purl": "pkg:composer/typo3/cms@6.2.39", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.39" }, { "url": "http://public2.vulnerablecode.io/api/packages/83394?format=api", "purl": "pkg:composer/typo3/cms@7.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.2.0" } ], "aliases": [ "CVE-2020-8091", "GHSA-qvhv-pwww-53jj" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-re9h-ze98-rbhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18429?format=api", "vulnerability_id": "VCID-rg5d-d8nc-9qfu", "summary": "Cross-Site Scripting in TYPO3 Backend\nFailing to properly encode user input, some backend components are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-1.yaml" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-009", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-009" }, { "reference_url": "https://github.com/advisories/GHSA-5wx6-xwxf-q8qj", "reference_id": "GHSA-5wx6-xwxf-q8qj", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5wx6-xwxf-q8qj" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/22105?format=api", "purl": "pkg:composer/typo3/cms@7.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/22107?format=api", "purl": "pkg:composer/typo3/cms@8.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-auw7-pc55-73hj" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zawz-vky5-tkgt" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.0.1" } ], "aliases": [ "GHSA-5wx6-xwxf-q8qj" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rg5d-d8nc-9qfu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18478?format=api", "vulnerability_id": "VCID-rkms-w15c-4yb1", "summary": "SQL Injection in TYPO3 Frontend Login\nFailing to properly escape user input, the frontend login component is vulnerable to SQL Injection. A valid frontend user account is needed to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-3.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-3.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-016", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-016" }, { "reference_url": "https://github.com/advisories/GHSA-j86x-pjmr-9m6w", "reference_id": "GHSA-j86x-pjmr-9m6w", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-j86x-pjmr-9m6w" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" } ], "aliases": [ "GHSA-j86x-pjmr-9m6w" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rkms-w15c-4yb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19737?format=api", "vulnerability_id": "VCID-rwgf-2pfh-ufdz", "summary": "TYPO3 Cross-Site Scripting Vulnerability Exploitable by Editors\nIt has been discovered that link tags generated by typolink functionality in the website's frontend are vulnerable to cross-site scripting - values being assigned to HTML attributes have not been parsed correctly. A valid backend user account is needed to exploit this vulnerability.\n\nAs second and separate vulnerability in the filelist module of the backend user interface has been referenced with this advisory as well. Error messages being shown after using a malicious name for renaming a file are not propery encoded, thus vulnerable to cross-site scripting. A valid backend user account is needed to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-3.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-3.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/7695d91fca1a96a3a3e7466097ae92c32b1130d8", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/7695d91fca1a96a3a3e7466097ae92c32b1130d8" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/d7feb40c8d277c6b6ab3a548313be1e1a2084299", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/d7feb40c8d277c6b6ab3a548313be1e1a2084299" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-004", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-004" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-004", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-004" }, { "reference_url": "https://github.com/advisories/GHSA-wp8j-c736-c5r3", "reference_id": "GHSA-wp8j-c736-c5r3", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-wp8j-c736-c5r3" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/53719?format=api", "purl": "pkg:composer/typo3/cms@7.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.1" } ], "aliases": [ "GHSA-wp8j-c736-c5r3" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rwgf-2pfh-ufdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18965?format=api", "vulnerability_id": "VCID-s49m-kyu7-vbee", "summary": "Typo3 Arbitrary File Disclosure in Form Component\nFailing to properly validate user input, the form component is susceptible to Arbitrary File Disclosure. A valid backend user account is needed to exploit this vulnerability. Only forms are vulnerable, which contain upload fields.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-2.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-010", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-010" }, { "reference_url": "https://github.com/advisories/GHSA-wrpf-2x8h-82gr", "reference_id": "GHSA-wrpf-2x8h-82gr", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-wrpf-2x8h-82gr" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22103?format=api", "purl": "pkg:composer/typo3/cms@6.2.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.20" } ], "aliases": [ "GHSA-wrpf-2x8h-82gr" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s49m-kyu7-vbee" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7297?format=api", "vulnerability_id": "VCID-s8h9-rdvk-9yfp", "summary": "Cross-site Scripting\nCross-Site Scripting in legacy form component.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "2016-02-16-3" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s8h9-rdvk-9yfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7125?format=api", "vulnerability_id": "VCID-se8w-fv8x-tqde", "summary": "Information Disclosure possibility exploitable by Editors.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-005/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-005/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/21152?format=api", "purl": "pkg:composer/typo3/cms@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.0" } ], "aliases": [ "2015-07-01-4" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-se8w-fv8x-tqde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18311?format=api", "vulnerability_id": "VCID-sszj-qy2p-ebbd", "summary": "TYPO3 Cross-Site Scripting in legacy form component\nFailing to sanitize content from editors, the legacy form component is susceptible to Cross-Site Scripting. A valid editor account with access to a form content element is required to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-3.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-3.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-003" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-003" }, { "reference_url": "https://github.com/advisories/GHSA-vgm8-r9gm-fw59", "reference_id": "GHSA-vgm8-r9gm-fw59", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-vgm8-r9gm-fw59" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" } ], "aliases": [ "GHSA-vgm8-r9gm-fw59" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sszj-qy2p-ebbd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7248?format=api", "vulnerability_id": "VCID-u347-jazz-zke4", "summary": "Cross-site Scripting\nCross-Site Scripting in TYPO3 component Indexed Search.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "2015-12-15-5" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u347-jazz-zke4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7315?format=api", "vulnerability_id": "VCID-u7nx-p1g7-cqhw", "summary": "Cross-site Scripting\nCross-Site Scripting in TYPO3 component Backend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-006/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "2016-02-23-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u7nx-p1g7-cqhw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7450?format=api", "vulnerability_id": "VCID-uckg-j48d-efad", "summary": "Cross-site Scripting\nCross-Site Scripting in TYPO3 Backend.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-014/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-014/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "2016-07-19-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uckg-j48d-efad" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18813?format=api", "vulnerability_id": "VCID-uj89-13ub-43fz", "summary": "TYPO3 Cross-Site Scripting in link validator component\nFailing to sanitize content from editors, the link validator component is susceptible to Cross-Site Scripting. A valid editor account with access to content which is scanned by the link validator component is required to exploit this vulnerability.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-2.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-002" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-002" }, { "reference_url": "https://github.com/advisories/GHSA-cg4m-qjjp-7497", "reference_id": "GHSA-cg4m-qjjp-7497", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-cg4m-qjjp-7497" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/21662?format=api", "purl": "pkg:composer/typo3/cms@7.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.3" } ], "aliases": [ "GHSA-cg4m-qjjp-7497" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uj89-13ub-43fz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7451?format=api", "vulnerability_id": "VCID-utpu-q2dv-m3hm", "summary": "Cross-site Scripting\nCross-Site Scripting vulnerability in typolinks.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-018", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-018" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/22750?format=api", "purl": "pkg:composer/typo3/cms@6.2.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/22752?format=api", "purl": "pkg:composer/typo3/cms@7.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/22754?format=api", "purl": "pkg:composer/typo3/cms@8.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18dg-eevv-3ug9" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1kae-ffj3-xyc7" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-2meq-x4kd-bbdn" }, { "vulnerability": "VCID-3gg5-1921-rbfs" }, { "vulnerability": "VCID-3n2r-awja-dug9" }, { "vulnerability": "VCID-3v4n-fzxa-bfaw" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-4ack-haf2-cfbe" }, { "vulnerability": "VCID-4btk-jt5n-2ugf" }, { "vulnerability": "VCID-551q-gpyd-ffe8" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5qfv-y43v-akdm" }, { "vulnerability": "VCID-5yg8-2cbr-d3as" }, { "vulnerability": "VCID-6487-15z5-pkd4" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-9g62-zd1x-3bdg" }, { "vulnerability": "VCID-9gpp-ez8w-rqav" }, { "vulnerability": "VCID-axaf-45kr-kbfe" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c2tm-eqmm-1ugt" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cm14-t8uv-k3es" }, { "vulnerability": "VCID-cmka-8484-27bu" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dj88-f3p8-cfbn" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dquc-7amf-e7cs" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e72u-tpc3-23g3" }, { "vulnerability": "VCID-e7sv-4xc2-m3d5" }, { "vulnerability": "VCID-eajg-ctpd-2bby" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-euk5-hagy-xqfz" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-j77k-hjgx-5kc5" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jppe-cbgm-k3cz" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-k4h1-mvnf-1ybx" }, { "vulnerability": "VCID-k8af-cg9k-87a9" }, { "vulnerability": "VCID-m7w6-b2xu-6uee" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-px44-19tj-h7aa" }, { "vulnerability": "VCID-q8hy-wjd9-nbgp" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qb4j-9tz7-m7a2" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-shqd-udhm-pff8" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-stzu-sxe6-5yf5" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tgma-cyvk-97ay" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tqf5-2fsm-8fch" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uw2r-3gvq-bbcq" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-vxj6-wvyz-zbaq" }, { "vulnerability": "VCID-vxry-uvph-kbfd" }, { "vulnerability": "VCID-vybh-pxr3-17hn" }, { "vulnerability": "VCID-wea9-egep-h7g5" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.2.1" } ], "aliases": [ "2016-07-19-5" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-utpu-q2dv-m3hm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55459?format=api", "vulnerability_id": "VCID-vbbx-pk8m-jfhd", "summary": "Typo3 Vulnerable to Cache Poisoning\n**Problem Description:** A request URL with arbitrary arguments, but still pointing to the home page of a TYPO3 installation can be cached if the configuration option `config.prefixLocalAnchors` is used with the values \"all\" or \"cached\". The impact of this vulnerability is that unfamiliar looking links to the home page can end up in the cache, which leads to a reload of the page in the browser when section links are followed by web page visitors, instead of just directly jumping to the requested section of the page. TYPO3 versions 4.6.x and higher are only affected if the homepage is not a shortcut to a different page.\n\n**Solution:** Removing the configuration options `config.prefixLocalAnchors` (and optionally also config.baseUrl) in favor of `config.absRefPrefix`\n\n**Credits:** Thanks to Gernot Leitgab who discovered and reported the vulnerability.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9509", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70392", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70372", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70358", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70401", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70411", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70296", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70309", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70326", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70304", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70349", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70364", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70388", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9509" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9509", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9509" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://github.com/advisories/GHSA-5479-gqqr-f9gj", "reference_id": "GHSA-5479-gqqr-f9gj", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5479-gqqr-f9gj" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20922?format=api", "purl": "pkg:composer/typo3/cms@6.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20923?format=api", "purl": "pkg:composer/typo3/cms@7.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.2" } ], "aliases": [ "CVE-2014-9509", "GHSA-5479-gqqr-f9gj" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vbbx-pk8m-jfhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18925?format=api", "vulnerability_id": "VCID-w5pn-eb7y-1kdp", "summary": "Denial of Service (DoS) attack possibility in TYPO3 component Indexed Search\nDue to an oversized maximum result limit, TYPO3 component Indexed Search is susceptible to a Denial of Service attack.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-4.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-4.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-008", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-008" }, { "reference_url": "https://github.com/advisories/GHSA-pmxp-7224-h794", "reference_id": "GHSA-pmxp-7224-h794", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-pmxp-7224-h794" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/21807?format=api", "purl": "pkg:composer/typo3/cms@7.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.4" } ], "aliases": [ "GHSA-pmxp-7224-h794" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w5pn-eb7y-1kdp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18824?format=api", "vulnerability_id": "VCID-wq32-kgff-gke8", "summary": "Cross-Site Scripting (XSS) in TYPO3 component CSS styled content\nFailing to properly encode user input, the CSS styled content component is susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML or JavaScript.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-3.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-3.yaml" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2016-007", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2016-007" }, { "reference_url": "https://github.com/advisories/GHSA-8j9v-4hhh-x43c", "reference_id": "GHSA-8j9v-4hhh-x43c", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-8j9v-4hhh-x43c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/21807?format=api", "purl": "pkg:composer/typo3/cms@7.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.4" } ], "aliases": [ "GHSA-8j9v-4hhh-x43c" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wq32-kgff-gke8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7251?format=api", "vulnerability_id": "VCID-ww44-zmx7-47ft", "summary": "Cross-Site Scripting vulnerability in typolinks\nAll link fields within the TYPO3 installation are vulnerable to Cross-Site Scripting as authorized editors can insert javascript commands by using the url scheme \"javascript:\".", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-012/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/21446?format=api", "purl": "pkg:composer/typo3/cms@7.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.1" } ], "aliases": [ "TYPO3-CORE-SA-2015-012" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ww44-zmx7-47ft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56690?format=api", "vulnerability_id": "VCID-xa4m-xpa9-v7h8", "summary": "TYPO3 Insecure Deserialization in Query Generator & Query View\nAn issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel (Backend Module: DB Check) installed, with a valid backend user who has administrator privileges. The other exploitable scenario requires having the system extension ext:sys_action installed, with a valid backend user who has limited privileges.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19849", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73104", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73005", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73015", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73036", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73011", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73048", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73061", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73085", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73065", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73058", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73101", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00746", "scoring_system": "epss", "scoring_elements": "0.73111", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19849" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19849.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19849.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19849.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19849.yaml" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19849", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19849" }, { "reference_url": "https://review.typo3.org/q/%2522Resolves:+%252389005%2522+topic:security", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://review.typo3.org/q/%2522Resolves:+%252389005%2522+topic:security" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2019-026", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2019-026" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2019-026/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/security/advisory/typo3-core-sa-2019-026/" }, { "reference_url": "https://github.com/advisories/GHSA-rcgc-4xfc-564v", "reference_id": "GHSA-rcgc-4xfc-564v", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-rcgc-4xfc-564v" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/58878?format=api", "purl": "pkg:composer/typo3/cms@8.7.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/58879?format=api", "purl": "pkg:composer/typo3/cms@9.5.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2mn6-mdmz-4yd9" }, { "vulnerability": "VCID-543x-cnbz-1kb9" }, { "vulnerability": "VCID-58js-jzm4-4fc7" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5kzs-ex81-bbaj" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-7kjw-j8st-mqfr" }, { "vulnerability": "VCID-a49c-fqrj-nbb3" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-phgh-sd4m-zbdx" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-sw7v-fbjk-13hy" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/58877?format=api", "purl": "pkg:composer/typo3/cms@10.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-2mn6-mdmz-4yd9" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-543x-cnbz-1kb9" }, { "vulnerability": "VCID-58js-jzm4-4fc7" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5kzs-ex81-bbaj" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-7kjw-j8st-mqfr" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-a49c-fqrj-nbb3" }, { "vulnerability": "VCID-a89c-jvwa-6kh5" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-cdjv-fp71-y3dv" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dhrm-uxuv-zfaj" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-phgh-sd4m-zbdx" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-sw7v-fbjk-13hy" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-usmv-r64u-m7cb" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/82226?format=api", "purl": "pkg:composer/typo3/cms@10.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1yxw-saf5-wue7" }, { "vulnerability": "VCID-2mn6-mdmz-4yd9" }, { "vulnerability": "VCID-4jpa-6fqh-hbfg" }, { "vulnerability": "VCID-543x-cnbz-1kb9" }, { "vulnerability": "VCID-58js-jzm4-4fc7" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5kzs-ex81-bbaj" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6a9t-8dmn-s3bv" }, { "vulnerability": "VCID-7kjw-j8st-mqfr" }, { "vulnerability": "VCID-8sdd-b1bn-cuhx" }, { "vulnerability": "VCID-a49c-fqrj-nbb3" }, { "vulnerability": "VCID-a89c-jvwa-6kh5" }, { "vulnerability": "VCID-av8u-rvzq-4fc7" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-cdjv-fp71-y3dv" }, { "vulnerability": "VCID-d8d1-sat6-muhe" }, { "vulnerability": "VCID-dhrm-uxuv-zfaj" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-e32h-8q61-hbgc" }, { "vulnerability": "VCID-ekfd-wp8z-d7e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-he5m-6wj4-rbhc" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-phgh-sd4m-zbdx" }, { "vulnerability": "VCID-remd-55jh-r3g5" }, { "vulnerability": "VCID-s55j-8hbt-akhn" }, { "vulnerability": "VCID-s64f-x81f-b7ce" }, { "vulnerability": "VCID-sw7v-fbjk-13hy" }, { "vulnerability": "VCID-t1n7-eswt-73gw" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-usmv-r64u-m7cb" }, { "vulnerability": "VCID-ve7g-8st5-wffb" }, { "vulnerability": "VCID-vwb2-a84s-5qak" }, { "vulnerability": "VCID-vyvy-y3cw-hbgr" }, { "vulnerability": "VCID-w13x-3rp9-wyej" }, { "vulnerability": "VCID-xh7y-56vy-5ud8" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-yj9g-uz1a-jkf2" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2" } ], "aliases": [ "CVE-2019-19849", "GHSA-rcgc-4xfc-564v" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xa4m-xpa9-v7h8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7127?format=api", "vulnerability_id": "VCID-xhq3-ts9t-sbdy", "summary": "Frontend login Session Fixation.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/21152?format=api", "purl": "pkg:composer/typo3/cms@7.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.0" } ], "aliases": [ "2015-07-01-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xhq3-ts9t-sbdy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19908?format=api", "vulnerability_id": "VCID-xkpp-psz2-2kag", "summary": "TYPO3 frontend login vulnerable to Session Fixation\nIt has been discovered that TYPO3 is susceptible to session fixation. If a user authenticates while anonymous session data is present, the session id is not changed. This makes it possible for attackers to generate a valid session id, trick users into using this session id (e.g. by leveraging a different Cross-Site Scripting vulnerability) and then maybe getting access to an authenticated session.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-07-01-2.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/4c9aba94a930d56ab374693c9c5cc0458587278a", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/4c9aba94a930d56ab374693c9c5cc0458587278a" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/4f6e84bba3c13ea8b2652af1a4c47758aa0705f4", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/4f6e84bba3c13ea8b2652af1a4c47758aa0705f4" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-003" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-003" }, { "reference_url": "https://github.com/advisories/GHSA-r9vc-jfmh-6j48", "reference_id": "GHSA-r9vc-jfmh-6j48", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r9vc-jfmh-6j48" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21151?format=api", "purl": "pkg:composer/typo3/cms@6.2.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/53719?format=api", "purl": "pkg:composer/typo3/cms@7.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.3.1" } ], "aliases": [ "GHSA-r9vc-jfmh-6j48" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xkpp-psz2-2kag" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7039?format=api", "vulnerability_id": "VCID-xp55-jxjr-zqcb", "summary": "Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')\nPossible cache poisining on the homepage when anchors are used.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20922?format=api", "purl": "pkg:composer/typo3/cms@6.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20923?format=api", "purl": "pkg:composer/typo3/cms@7.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.2" } ], "aliases": [ "2014-12-09-2" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xp55-jxjr-zqcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18646?format=api", "vulnerability_id": "VCID-xwtv-48ph-6fb6", "summary": "TYPO3 SQL Injection in dbal\nA flaw in the database escaping API results in a SQL injection vulnerability when extension dbal is enabled and configured for MySQL passthrough mode in its extension configuration. All queries which use the DatabaseConnection::sql_query are vulnerable, even if arguments were properly escaped with DatabaseConnection::quoteStr beforehand.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-16-1.yaml" }, { "reference_url": "https://typo3.org/article/typo3-core-sa-2016-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/article/typo3-core-sa-2016-001" }, { "reference_url": "https://github.com/advisories/GHSA-9895-53fc-98v2", "reference_id": "GHSA-9895-53fc-98v2", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-9895-53fc-98v2" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" } ], "aliases": [ "GHSA-9895-53fc-98v2" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xwtv-48ph-6fb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18292?format=api", "vulnerability_id": "VCID-z41h-5mem-gfc7", "summary": "Cross-Site Scripting in TYPO3 component Indexed Search\nFailing to properly encode editor input, the search result view of indexed_search is susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-5.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2015-12-15-5.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-015", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-015" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015" }, { "reference_url": "https://github.com/advisories/GHSA-wh8q-72cp-p5wf", "reference_id": "GHSA-wh8q-72cp-p5wf", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-wh8q-72cp-p5wf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" } ], "aliases": [ "GHSA-wh8q-72cp-p5wf" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z41h-5mem-gfc7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7317?format=api", "vulnerability_id": "VCID-z5qq-nwn5-tqgm", "summary": "Cross-site Scripting\nCross-Site Scripting in TYPO3 component CSS styled content.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-007/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-007/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21805?format=api", "purl": "pkg:composer/typo3/cms@6.2.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/21807?format=api", "purl": "pkg:composer/typo3/cms@7.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2fs8-bscc-3ye2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-47px-4d98-ubab" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-bmj2-4k58-tqa4" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-ep6t-zwd1-4bb3" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-fy3g-uegw-2bew" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h63t-9enx-qfdn" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hpgq-deze-p7dp" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqth-wfgx-87cx" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-mqbh-k9n3-nbed" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-mub5-s7h1-57cy" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nt6a-5zkv-pbcm" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-pnfa-cksc-43de" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rzw5-8d1u-sfam" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-vrt1-aj9v-2kb6" }, { "vulnerability": "VCID-wge3-kxdq-f3bz" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.4" } ], "aliases": [ "2016-02-23-3" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z5qq-nwn5-tqgm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/52642?format=api", "vulnerability_id": "VCID-zdq2-dhb2-6kaq", "summary": "TYPO3 CMS vulnerable to Weak Authentication in Frontend Login\n### Problem\nRestricting frontend login to specific users, organized in different storage folders (partitions), can be bypassed. A potential attacker might use this ambiguity in usernames to get access to a different account - however, credentials must be known to the adversary.\n\n### Solution\nUpdate to TYPO3 versions 8.7.49 ELTS, 9.5.38 ELTS, 10.4.33, 11.5.20, 12.1.1 that fix the problem described above.\n\n### References\n* [TYPO3-CORE-SA-2022-013](https://typo3.org/security/advisory/typo3-core-sa-2022-013)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23501", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45749", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.4579", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45795", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45746", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45738", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45768", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45745", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45724", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45744", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45693", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-23501" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-23501.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2022-23501.yaml" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-23501.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2022-23501.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/28be9cdb3fed02ce4cfc6fa2d39f7d8e2266eced", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/28be9cdb3fed02ce4cfc6fa2d39f7d8e2266eced" }, { "reference_url": "https://github.com/TYPO3/typo3/security/advisories/GHSA-jfp7-79g7-89rf", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T18:48:00Z/" } ], "url": "https://github.com/TYPO3/typo3/security/advisories/GHSA-jfp7-79g7-89rf" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23501", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23501" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2022-013", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2022-013" }, { "reference_url": "https://github.com/advisories/GHSA-jfp7-79g7-89rf", "reference_id": "GHSA-jfp7-79g7-89rf", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jfp7-79g7-89rf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/80269?format=api", "purl": "pkg:composer/typo3/cms@10.4.33", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-vyvy-y3cw-hbgr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.33" }, { "url": "http://public2.vulnerablecode.io/api/packages/80270?format=api", "purl": "pkg:composer/typo3/cms@11.5.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-vyvy-y3cw-hbgr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/80271?format=api", "purl": "pkg:composer/typo3/cms@12.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-vyvy-y3cw-hbgr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@12.1.1" } ], "aliases": [ "CVE-2022-23501", "GHSA-jfp7-79g7-89rf", "GMS-2022-8134" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zdq2-dhb2-6kaq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7300?format=api", "vulnerability_id": "VCID-zeku-t9fv-kych", "summary": "Cross-site Scripting\nCross-Site Scripting in form component.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-004/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-004/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21651?format=api", "purl": "pkg:composer/typo3/cms@6.2.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/20921?format=api", "purl": "pkg:composer/typo3/cms@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0" } ], "aliases": [ "2016-02-16-4" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zeku-t9fv-kych" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55718?format=api", "vulnerability_id": "VCID-zp3u-ukzs-ukf6", "summary": "TYPO3 CMS indexed search Cross-site Scripting vulnerability\nCross-site scripting (XSS) vulnerability in the search result view in the Indexed Search (indexed_search) component in TYPO3 6.2.x before 6.2.16 allows remote authenticated editors to inject arbitrary web script or HTML via unspecified vectors.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8756", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40582", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40502", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40611", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40583", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.4061", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40532", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40592", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40495", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40602", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40554", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40574", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-8756" }, { "reference_url": "https://github.com/TYPO3-CMS/indexed_search", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3-CMS/indexed_search" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/7e4bdf48988191043a65880c72190c4130c1f0e0", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/7e4bdf48988191043a65880c72190c4130c1f0e0" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8756", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:P/A:N" }, { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8756" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2015-015", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2015-015" }, { "reference_url": "https://web.archive.org/web/20160624215319/http://www.securitytracker.com/id/1034486", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160624215319/http://www.securitytracker.com/id/1034486" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/" }, { "reference_url": "http://www.securitytracker.com/id/1034486", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1034486" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*" }, { "reference_url": "https://github.com/advisories/GHSA-xx7m-8rq2-cw2v", "reference_id": "GHSA-xx7m-8rq2-cw2v", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-xx7m-8rq2-cw2v" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/21428?format=api", "purl": "pkg:composer/typo3/cms@6.2.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.16" } ], "aliases": [ "CVE-2015-8756", "GHSA-xx7m-8rq2-cw2v" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zp3u-ukzs-ukf6" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/57785?format=api", "vulnerability_id": "VCID-133h-9erq-2fhy", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35625", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35635", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35681", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35703", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35713", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35669", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35646", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35686", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35676", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35527", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35728", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35754", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3946.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3946.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3946" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2942", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2942" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2014/06/03/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2014/06/03/2" }, { "reference_url": "https://github.com/advisories/GHSA-vccp-5v5h-p8m6", "reference_id": "GHSA-vccp-5v5h-p8m6", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-vccp-5v5h-p8m6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "CVE-2014-3946", "GHSA-vccp-5v5h-p8m6" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-133h-9erq-2fhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6962?format=api", "vulnerability_id": "VCID-4auu-re6t-p3gu", "summary": "Improper Authentication\nThe Authentication component in TYPO3 does not properly invalidate timed out user sessions, which allows remote attackers to bypass authentication via unspecified vectors.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40395", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40428", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40479", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.4049", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40511", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40474", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40454", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40502", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.4047", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40393", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.4048", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40506", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3944.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3944.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3944" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001/" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2942", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2942" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2014/06/03/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2014/06/03/2" }, { "reference_url": "https://github.com/advisories/GHSA-9j8h-xrgj-7gw2", "reference_id": "GHSA-9j8h-xrgj-7gw2", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-9j8h-xrgj-7gw2" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "CVE-2014-3944", "GHSA-9j8h-xrgj-7gw2" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4auu-re6t-p3gu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19111?format=api", "vulnerability_id": "VCID-59zz-tmvz-sqgm", "summary": "ExtJS JavaScript framework used in TYPO3 vulnerable to Cross-site Scripting\nFailing to properly validate the HTTP host-header TYPO3 CMS is susceptible to host spoofing. TYPO3 uses the HTTP host-header to generate absolute URLs in several places like 404 handling, http(s) enforcement, password reset links and many more. Since the host header itself is provided by the client it can be forged to any value, even in a name based virtual hosts environment. A blog post describes this problem in great detail.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-05-22-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-05-22-1.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/32efb1b03573d51391126c90cd87c74b3dc457fb", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/32efb1b03573d51391126c90cd87c74b3dc457fb" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/9bd777649e4022c89dbf39ca41988a594b5e94b8", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/9bd777649e4022c89dbf39ca41988a594b5e94b8" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/c39bca9613c311dd12e61771dd311b1bb2283b8d", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/c39bca9613c311dd12e61771dd311b1bb2283b8d" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/d554ac5323f3b0fac1fce4c2c491d0123badd669", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/d554ac5323f3b0fac1fce4c2c491d0123badd669" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001" }, { "reference_url": "https://web.archive.org/web/20140531042943/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20140531042943/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "https://github.com/advisories/GHSA-mxjf-hc9v-xgv2", "reference_id": "GHSA-mxjf-hc9v-xgv2", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-mxjf-hc9v-xgv2" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54356?format=api", "purl": "pkg:composer/typo3/cms@4.5.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@4.5.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/54357?format=api", "purl": "pkg:composer/typo3/cms@4.7.19", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@4.7.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/54359?format=api", "purl": "pkg:composer/typo3/cms@6.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "GHSA-mxjf-hc9v-xgv2" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-59zz-tmvz-sqgm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15673?format=api", "vulnerability_id": "VCID-9j2h-q1n5-kbgt", "summary": "Typo3 XSS Vulnerabilities\nMultiple cross-site scripting (XSS) vulnerabilities in unspecified backend components in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allow remote authenticated editors to inject arbitrary web script or HTML via unknown parameters.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43128", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43195", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43205", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43146", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43161", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43194", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43083", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43142", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43173", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43169", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.4316", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43107", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "https://web.archive.org/web/20200229060129/http://www.securityfocus.com/bid/67625", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20200229060129/http://www.securityfocus.com/bid/67625" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2942", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2942" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2014/06/03/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2014/06/03/2" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3943", "reference_id": "CVE-2014-3943", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3943" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3943.yaml", "reference_id": "CVE-2014-3943.YAML", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3943.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-qqh2-h6gw-6x8x", "reference_id": "GHSA-qqh2-h6gw-6x8x", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-qqh2-h6gw-6x8x" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54356?format=api", "purl": "pkg:composer/typo3/cms@4.5.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@4.5.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/54357?format=api", "purl": "pkg:composer/typo3/cms@4.7.19", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@4.7.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/54358?format=api", "purl": "pkg:composer/typo3/cms@6.0.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-vbbx-pk8m-jfhd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.0.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/54359?format=api", "purl": "pkg:composer/typo3/cms@6.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "CVE-2014-3943", "GHSA-qqh2-h6gw-6x8x" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9j2h-q1n5-kbgt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15587?format=api", "vulnerability_id": "VCID-d79s-4kzk-hugy", "summary": "Typo3 Host Header Spoofing Vulnerability\nTYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allows remote attackers to have unspecified impact via a crafted HTTP Host header, related to \"Host Spoofing.\"", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51106", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51067", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51084", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.50973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51026", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51105", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51051", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51008", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51062", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51065", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51089", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51112", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2942", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2942" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2014/06/03/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2014/06/03/2" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3941", "reference_id": "CVE-2014-3941", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3941" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3941.yaml", "reference_id": "CVE-2014-3941.YAML", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3941.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-594h-cx6w-p4jf", "reference_id": "GHSA-594h-cx6w-p4jf", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-594h-cx6w-p4jf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54356?format=api", "purl": "pkg:composer/typo3/cms@4.5.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@4.5.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/54357?format=api", "purl": "pkg:composer/typo3/cms@4.7.19", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@4.7.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/54358?format=api", "purl": "pkg:composer/typo3/cms@6.0.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-vbbx-pk8m-jfhd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.0.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/54359?format=api", "purl": "pkg:composer/typo3/cms@6.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "CVE-2014-3941", "GHSA-594h-cx6w-p4jf" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d79s-4kzk-hugy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6956?format=api", "vulnerability_id": "VCID-s6k7-pp34-zygu", "summary": "Cross-site Scripting\nThe ExtJS JavaScript framework that is shipped with TYPO3 is susceptible to XSS.", "references": [ { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "2014-05-22-1" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s6k7-pp34-zygu" } ], "risk_score": "4.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" }