Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/typo3/cms-core@8.5.0
Typecomposer
Namespacetypo3
Namecms-core
Version8.5.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version12.4.41
Latest_non_vulnerable_version14.0.2
Affected_by_vulnerabilities
0
url VCID-9jj4-ec9n-qbhs
vulnerability_id VCID-9jj4-ec9n-qbhs
summary Insecure Deserialization in TYPO3 CMS.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2018-004/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2018-004/
fixed_packages
0
url pkg:composer/typo3/cms-core@8.7.17
purl pkg:composer/typo3/cms-core@8.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21e8-x7mp-hugk
1
vulnerability VCID-2meq-x4kd-bbdn
2
vulnerability VCID-3gg5-1921-rbfs
3
vulnerability VCID-3n2r-awja-dug9
4
vulnerability VCID-3v4n-fzxa-bfaw
5
vulnerability VCID-4btk-jt5n-2ugf
6
vulnerability VCID-4jpa-6fqh-hbfg
7
vulnerability VCID-551q-gpyd-ffe8
8
vulnerability VCID-5jgb-dsyx-hyb4
9
vulnerability VCID-5mxm-88r9-hfey
10
vulnerability VCID-5paq-5frf-43ed
11
vulnerability VCID-5u4q-m66t-wqcj
12
vulnerability VCID-5z59-dn7p-xbc5
13
vulnerability VCID-6xmj-wbea-r7ex
14
vulnerability VCID-9g62-zd1x-3bdg
15
vulnerability VCID-9gpp-ez8w-rqav
16
vulnerability VCID-9x6r-56xm-n7h7
17
vulnerability VCID-9zqs-hjay-fkev
18
vulnerability VCID-a563-vtwa-hkbr
19
vulnerability VCID-axaf-45kr-kbfe
20
vulnerability VCID-axvk-13qf-tka7
21
vulnerability VCID-b6er-h7dm-3bev
22
vulnerability VCID-b81w-n2ne-z3ee
23
vulnerability VCID-bajy-qbwq-fufn
24
vulnerability VCID-bnne-7p2q-eqd2
25
vulnerability VCID-cm14-t8uv-k3es
26
vulnerability VCID-d99v-v9cj-zfh2
27
vulnerability VCID-dj88-f3p8-cfbn
28
vulnerability VCID-dm97-51uu-r7gw
29
vulnerability VCID-dsu7-jjjq-f3e1
30
vulnerability VCID-e268-wagv-sbex
31
vulnerability VCID-eajg-ctpd-2bby
32
vulnerability VCID-ehzg-bzrd-kbcc
33
vulnerability VCID-ekfd-wp8z-d7e1
34
vulnerability VCID-f4bv-pzdy-dfcb
35
vulnerability VCID-f963-qur3-2qb7
36
vulnerability VCID-g4uc-qeb6-myed
37
vulnerability VCID-gcnj-6qb6-pbgz
38
vulnerability VCID-gv1b-xtv4-4yg3
39
vulnerability VCID-h6y3-7gsq-skh2
40
vulnerability VCID-he5m-6wj4-rbhc
41
vulnerability VCID-hhmn-yz5p-xkap
42
vulnerability VCID-j77k-hjgx-5kc5
43
vulnerability VCID-k8af-cg9k-87a9
44
vulnerability VCID-mh4f-vtfj-hbb1
45
vulnerability VCID-mnz3-rj21-67ad
46
vulnerability VCID-n15v-ta9h-6ffb
47
vulnerability VCID-n1cb-8py6-bbhu
48
vulnerability VCID-n78p-x7hh-gqcf
49
vulnerability VCID-n7ng-zkkb-2qaz
50
vulnerability VCID-pmzz-9rws-4ud5
51
vulnerability VCID-pss5-as4b-cyf2
52
vulnerability VCID-px44-19tj-h7aa
53
vulnerability VCID-q8hy-wjd9-nbgp
54
vulnerability VCID-qb4j-9tz7-m7a2
55
vulnerability VCID-rdrs-mhaw-b3ge
56
vulnerability VCID-rwqs-3ktq-qqbd
57
vulnerability VCID-s53a-f91p-huf4
58
vulnerability VCID-s55j-8hbt-akhn
59
vulnerability VCID-s64f-x81f-b7ce
60
vulnerability VCID-stzu-sxe6-5yf5
61
vulnerability VCID-swnc-ke6h-ekew
62
vulnerability VCID-t1n7-eswt-73gw
63
vulnerability VCID-t3jn-vwbx-u7cr
64
vulnerability VCID-taj6-zj2n-5kg8
65
vulnerability VCID-tnjd-pyys-akav
66
vulnerability VCID-tw1y-t4qj-j3d1
67
vulnerability VCID-vxry-uvph-kbfd
68
vulnerability VCID-vyvy-y3cw-hbgr
69
vulnerability VCID-wea9-egep-h7g5
70
vulnerability VCID-xa4m-xpa9-v7h8
71
vulnerability VCID-xh7y-56vy-5ud8
72
vulnerability VCID-y32z-2d3f-gkgw
73
vulnerability VCID-zdq2-dhb2-6kaq
74
vulnerability VCID-zkea-ge1t-z7gn
75
vulnerability VCID-zspb-bd6j-wyd2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.17
1
url pkg:composer/typo3/cms-core@9.3.2
purl pkg:composer/typo3/cms-core@9.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21e8-x7mp-hugk
1
vulnerability VCID-2meq-x4kd-bbdn
2
vulnerability VCID-2mn6-mdmz-4yd9
3
vulnerability VCID-3gg5-1921-rbfs
4
vulnerability VCID-3n2r-awja-dug9
5
vulnerability VCID-3v4n-fzxa-bfaw
6
vulnerability VCID-461j-9hrc-gfbc
7
vulnerability VCID-4btk-jt5n-2ugf
8
vulnerability VCID-4jpa-6fqh-hbfg
9
vulnerability VCID-4mkw-tv16-jyca
10
vulnerability VCID-4t9s-p25a-cfas
11
vulnerability VCID-543x-cnbz-1kb9
12
vulnerability VCID-551q-gpyd-ffe8
13
vulnerability VCID-58js-jzm4-4fc7
14
vulnerability VCID-5jgb-dsyx-hyb4
15
vulnerability VCID-5kzs-ex81-bbaj
16
vulnerability VCID-5paq-5frf-43ed
17
vulnerability VCID-5u4q-m66t-wqcj
18
vulnerability VCID-5z59-dn7p-xbc5
19
vulnerability VCID-65ue-7jd9-23gf
20
vulnerability VCID-6a9t-8dmn-s3bv
21
vulnerability VCID-6xmj-wbea-r7ex
22
vulnerability VCID-8d2m-1ffv-jqe1
23
vulnerability VCID-9g62-zd1x-3bdg
24
vulnerability VCID-9gpp-ez8w-rqav
25
vulnerability VCID-9x6r-56xm-n7h7
26
vulnerability VCID-9zqs-hjay-fkev
27
vulnerability VCID-a49c-fqrj-nbb3
28
vulnerability VCID-a563-vtwa-hkbr
29
vulnerability VCID-axaf-45kr-kbfe
30
vulnerability VCID-axvk-13qf-tka7
31
vulnerability VCID-b6er-h7dm-3bev
32
vulnerability VCID-bajy-qbwq-fufn
33
vulnerability VCID-bnne-7p2q-eqd2
34
vulnerability VCID-cm14-t8uv-k3es
35
vulnerability VCID-d8d1-sat6-muhe
36
vulnerability VCID-d99v-v9cj-zfh2
37
vulnerability VCID-dj88-f3p8-cfbn
38
vulnerability VCID-dm97-51uu-r7gw
39
vulnerability VCID-dmzb-gkdn-6bcm
40
vulnerability VCID-dsu7-jjjq-f3e1
41
vulnerability VCID-e268-wagv-sbex
42
vulnerability VCID-e32h-8q61-hbgc
43
vulnerability VCID-eajg-ctpd-2bby
44
vulnerability VCID-ekfd-wp8z-d7e1
45
vulnerability VCID-f4bv-pzdy-dfcb
46
vulnerability VCID-f963-qur3-2qb7
47
vulnerability VCID-g4uc-qeb6-myed
48
vulnerability VCID-gcnj-6qb6-pbgz
49
vulnerability VCID-gv1b-xtv4-4yg3
50
vulnerability VCID-h6y3-7gsq-skh2
51
vulnerability VCID-he5m-6wj4-rbhc
52
vulnerability VCID-hhmn-yz5p-xkap
53
vulnerability VCID-k8af-cg9k-87a9
54
vulnerability VCID-kj9x-psfz-2ug1
55
vulnerability VCID-mh4f-vtfj-hbb1
56
vulnerability VCID-mnz3-rj21-67ad
57
vulnerability VCID-mud2-s4rc-fuf6
58
vulnerability VCID-n15v-ta9h-6ffb
59
vulnerability VCID-n1cb-8py6-bbhu
60
vulnerability VCID-n78p-x7hh-gqcf
61
vulnerability VCID-n7ng-zkkb-2qaz
62
vulnerability VCID-nubu-f1sc-gbes
63
vulnerability VCID-nxq4-m52q-yuh4
64
vulnerability VCID-p715-yexd-jfgc
65
vulnerability VCID-phgh-sd4m-zbdx
66
vulnerability VCID-pmzz-9rws-4ud5
67
vulnerability VCID-pss5-as4b-cyf2
68
vulnerability VCID-px44-19tj-h7aa
69
vulnerability VCID-q8hy-wjd9-nbgp
70
vulnerability VCID-qb4j-9tz7-m7a2
71
vulnerability VCID-raxk-rm9v-hubn
72
vulnerability VCID-rdrs-mhaw-b3ge
73
vulnerability VCID-remd-55jh-r3g5
74
vulnerability VCID-rwqs-3ktq-qqbd
75
vulnerability VCID-s53a-f91p-huf4
76
vulnerability VCID-s55j-8hbt-akhn
77
vulnerability VCID-s64f-x81f-b7ce
78
vulnerability VCID-stzu-sxe6-5yf5
79
vulnerability VCID-sw7v-fbjk-13hy
80
vulnerability VCID-swnc-ke6h-ekew
81
vulnerability VCID-t1n7-eswt-73gw
82
vulnerability VCID-t3jn-vwbx-u7cr
83
vulnerability VCID-taj6-zj2n-5kg8
84
vulnerability VCID-tnjd-pyys-akav
85
vulnerability VCID-tw1y-t4qj-j3d1
86
vulnerability VCID-u9bx-8e86-wbew
87
vulnerability VCID-ve7g-8st5-wffb
88
vulnerability VCID-vxry-uvph-kbfd
89
vulnerability VCID-vyvy-y3cw-hbgr
90
vulnerability VCID-w13x-3rp9-wyej
91
vulnerability VCID-wea9-egep-h7g5
92
vulnerability VCID-xa4m-xpa9-v7h8
93
vulnerability VCID-xh7y-56vy-5ud8
94
vulnerability VCID-xtdg-uj46-rkcm
95
vulnerability VCID-xy6y-312d-rygj
96
vulnerability VCID-y32z-2d3f-gkgw
97
vulnerability VCID-yzx1-4psv-7bhr
98
vulnerability VCID-zdq2-dhb2-6kaq
99
vulnerability VCID-zkea-ge1t-z7gn
100
vulnerability VCID-zspb-bd6j-wyd2
101
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.3.2
aliases 2018-07-12-4
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9jj4-ec9n-qbhs
1
url VCID-ayw6-8pn4-17eb
vulnerability_id VCID-ayw6-8pn4-17eb
summary 
TYPO3 CMS Insecure Deserialization
It has been discovered that the Form Framework (system extension `form`) is vulnerable to Insecure Deserialization when being used with the additional PHP PECL package `yaml`, which is capable of unserializing YAML contents to PHP objects. A valid backend user account as well as having PHP setting `yaml.decode_php` enabled is needed to exploit this vulnerability (which is the default value according to PHP documentation).
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/2018-07-12-4.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/2018-07-12-4.yaml
1
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
2
reference_url https://typo3.org/security/advisory/typo3-core-sa-2018-004
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2018-004
3
reference_url https://github.com/advisories/GHSA-96jg-pmc4-cx39
reference_id GHSA-96jg-pmc4-cx39
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-96jg-pmc4-cx39
fixed_packages
0
url pkg:composer/typo3/cms-core@8.7.17
purl pkg:composer/typo3/cms-core@8.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21e8-x7mp-hugk
1
vulnerability VCID-2meq-x4kd-bbdn
2
vulnerability VCID-3gg5-1921-rbfs
3
vulnerability VCID-3n2r-awja-dug9
4
vulnerability VCID-3v4n-fzxa-bfaw
5
vulnerability VCID-4btk-jt5n-2ugf
6
vulnerability VCID-4jpa-6fqh-hbfg
7
vulnerability VCID-551q-gpyd-ffe8
8
vulnerability VCID-5jgb-dsyx-hyb4
9
vulnerability VCID-5mxm-88r9-hfey
10
vulnerability VCID-5paq-5frf-43ed
11
vulnerability VCID-5u4q-m66t-wqcj
12
vulnerability VCID-5z59-dn7p-xbc5
13
vulnerability VCID-6xmj-wbea-r7ex
14
vulnerability VCID-9g62-zd1x-3bdg
15
vulnerability VCID-9gpp-ez8w-rqav
16
vulnerability VCID-9x6r-56xm-n7h7
17
vulnerability VCID-9zqs-hjay-fkev
18
vulnerability VCID-a563-vtwa-hkbr
19
vulnerability VCID-axaf-45kr-kbfe
20
vulnerability VCID-axvk-13qf-tka7
21
vulnerability VCID-b6er-h7dm-3bev
22
vulnerability VCID-b81w-n2ne-z3ee
23
vulnerability VCID-bajy-qbwq-fufn
24
vulnerability VCID-bnne-7p2q-eqd2
25
vulnerability VCID-cm14-t8uv-k3es
26
vulnerability VCID-d99v-v9cj-zfh2
27
vulnerability VCID-dj88-f3p8-cfbn
28
vulnerability VCID-dm97-51uu-r7gw
29
vulnerability VCID-dsu7-jjjq-f3e1
30
vulnerability VCID-e268-wagv-sbex
31
vulnerability VCID-eajg-ctpd-2bby
32
vulnerability VCID-ehzg-bzrd-kbcc
33
vulnerability VCID-ekfd-wp8z-d7e1
34
vulnerability VCID-f4bv-pzdy-dfcb
35
vulnerability VCID-f963-qur3-2qb7
36
vulnerability VCID-g4uc-qeb6-myed
37
vulnerability VCID-gcnj-6qb6-pbgz
38
vulnerability VCID-gv1b-xtv4-4yg3
39
vulnerability VCID-h6y3-7gsq-skh2
40
vulnerability VCID-he5m-6wj4-rbhc
41
vulnerability VCID-hhmn-yz5p-xkap
42
vulnerability VCID-j77k-hjgx-5kc5
43
vulnerability VCID-k8af-cg9k-87a9
44
vulnerability VCID-mh4f-vtfj-hbb1
45
vulnerability VCID-mnz3-rj21-67ad
46
vulnerability VCID-n15v-ta9h-6ffb
47
vulnerability VCID-n1cb-8py6-bbhu
48
vulnerability VCID-n78p-x7hh-gqcf
49
vulnerability VCID-n7ng-zkkb-2qaz
50
vulnerability VCID-pmzz-9rws-4ud5
51
vulnerability VCID-pss5-as4b-cyf2
52
vulnerability VCID-px44-19tj-h7aa
53
vulnerability VCID-q8hy-wjd9-nbgp
54
vulnerability VCID-qb4j-9tz7-m7a2
55
vulnerability VCID-rdrs-mhaw-b3ge
56
vulnerability VCID-rwqs-3ktq-qqbd
57
vulnerability VCID-s53a-f91p-huf4
58
vulnerability VCID-s55j-8hbt-akhn
59
vulnerability VCID-s64f-x81f-b7ce
60
vulnerability VCID-stzu-sxe6-5yf5
61
vulnerability VCID-swnc-ke6h-ekew
62
vulnerability VCID-t1n7-eswt-73gw
63
vulnerability VCID-t3jn-vwbx-u7cr
64
vulnerability VCID-taj6-zj2n-5kg8
65
vulnerability VCID-tnjd-pyys-akav
66
vulnerability VCID-tw1y-t4qj-j3d1
67
vulnerability VCID-vxry-uvph-kbfd
68
vulnerability VCID-vyvy-y3cw-hbgr
69
vulnerability VCID-wea9-egep-h7g5
70
vulnerability VCID-xa4m-xpa9-v7h8
71
vulnerability VCID-xh7y-56vy-5ud8
72
vulnerability VCID-y32z-2d3f-gkgw
73
vulnerability VCID-zdq2-dhb2-6kaq
74
vulnerability VCID-zkea-ge1t-z7gn
75
vulnerability VCID-zspb-bd6j-wyd2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.17
1
url pkg:composer/typo3/cms-core@9.3.1
purl pkg:composer/typo3/cms-core@9.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12y5-7b81-wkfu
1
vulnerability VCID-21e8-x7mp-hugk
2
vulnerability VCID-2meq-x4kd-bbdn
3
vulnerability VCID-2mn6-mdmz-4yd9
4
vulnerability VCID-3gg5-1921-rbfs
5
vulnerability VCID-3n2r-awja-dug9
6
vulnerability VCID-3v4n-fzxa-bfaw
7
vulnerability VCID-461j-9hrc-gfbc
8
vulnerability VCID-4btk-jt5n-2ugf
9
vulnerability VCID-4jpa-6fqh-hbfg
10
vulnerability VCID-4mkw-tv16-jyca
11
vulnerability VCID-4t9s-p25a-cfas
12
vulnerability VCID-543x-cnbz-1kb9
13
vulnerability VCID-551q-gpyd-ffe8
14
vulnerability VCID-58js-jzm4-4fc7
15
vulnerability VCID-5jgb-dsyx-hyb4
16
vulnerability VCID-5kzs-ex81-bbaj
17
vulnerability VCID-5paq-5frf-43ed
18
vulnerability VCID-5u4q-m66t-wqcj
19
vulnerability VCID-5z59-dn7p-xbc5
20
vulnerability VCID-65ue-7jd9-23gf
21
vulnerability VCID-6a9t-8dmn-s3bv
22
vulnerability VCID-6xmj-wbea-r7ex
23
vulnerability VCID-8d2m-1ffv-jqe1
24
vulnerability VCID-9g62-zd1x-3bdg
25
vulnerability VCID-9gpp-ez8w-rqav
26
vulnerability VCID-9x6r-56xm-n7h7
27
vulnerability VCID-9zqs-hjay-fkev
28
vulnerability VCID-a49c-fqrj-nbb3
29
vulnerability VCID-a563-vtwa-hkbr
30
vulnerability VCID-axaf-45kr-kbfe
31
vulnerability VCID-axvk-13qf-tka7
32
vulnerability VCID-b6er-h7dm-3bev
33
vulnerability VCID-bajy-qbwq-fufn
34
vulnerability VCID-bnne-7p2q-eqd2
35
vulnerability VCID-cm14-t8uv-k3es
36
vulnerability VCID-d8d1-sat6-muhe
37
vulnerability VCID-d99v-v9cj-zfh2
38
vulnerability VCID-dj88-f3p8-cfbn
39
vulnerability VCID-dm97-51uu-r7gw
40
vulnerability VCID-dmzb-gkdn-6bcm
41
vulnerability VCID-dsu7-jjjq-f3e1
42
vulnerability VCID-e268-wagv-sbex
43
vulnerability VCID-e32h-8q61-hbgc
44
vulnerability VCID-eajg-ctpd-2bby
45
vulnerability VCID-ebpa-58em-wqam
46
vulnerability VCID-ekfd-wp8z-d7e1
47
vulnerability VCID-f4bv-pzdy-dfcb
48
vulnerability VCID-f963-qur3-2qb7
49
vulnerability VCID-g4uc-qeb6-myed
50
vulnerability VCID-gcnj-6qb6-pbgz
51
vulnerability VCID-gv1b-xtv4-4yg3
52
vulnerability VCID-h6y3-7gsq-skh2
53
vulnerability VCID-he5m-6wj4-rbhc
54
vulnerability VCID-hhmn-yz5p-xkap
55
vulnerability VCID-k8af-cg9k-87a9
56
vulnerability VCID-kj9x-psfz-2ug1
57
vulnerability VCID-mh4f-vtfj-hbb1
58
vulnerability VCID-mnz3-rj21-67ad
59
vulnerability VCID-mud2-s4rc-fuf6
60
vulnerability VCID-n15v-ta9h-6ffb
61
vulnerability VCID-n1cb-8py6-bbhu
62
vulnerability VCID-n78p-x7hh-gqcf
63
vulnerability VCID-n7ng-zkkb-2qaz
64
vulnerability VCID-nubu-f1sc-gbes
65
vulnerability VCID-nxq4-m52q-yuh4
66
vulnerability VCID-p715-yexd-jfgc
67
vulnerability VCID-phgh-sd4m-zbdx
68
vulnerability VCID-pmzz-9rws-4ud5
69
vulnerability VCID-pss5-as4b-cyf2
70
vulnerability VCID-px44-19tj-h7aa
71
vulnerability VCID-q8hy-wjd9-nbgp
72
vulnerability VCID-qb4j-9tz7-m7a2
73
vulnerability VCID-raxk-rm9v-hubn
74
vulnerability VCID-rdrs-mhaw-b3ge
75
vulnerability VCID-remd-55jh-r3g5
76
vulnerability VCID-rwqs-3ktq-qqbd
77
vulnerability VCID-s53a-f91p-huf4
78
vulnerability VCID-s55j-8hbt-akhn
79
vulnerability VCID-s64f-x81f-b7ce
80
vulnerability VCID-stzu-sxe6-5yf5
81
vulnerability VCID-sw7v-fbjk-13hy
82
vulnerability VCID-swnc-ke6h-ekew
83
vulnerability VCID-t1n7-eswt-73gw
84
vulnerability VCID-t3jn-vwbx-u7cr
85
vulnerability VCID-taj6-zj2n-5kg8
86
vulnerability VCID-tnjd-pyys-akav
87
vulnerability VCID-tw1y-t4qj-j3d1
88
vulnerability VCID-u9bx-8e86-wbew
89
vulnerability VCID-ve7g-8st5-wffb
90
vulnerability VCID-vxry-uvph-kbfd
91
vulnerability VCID-vyvy-y3cw-hbgr
92
vulnerability VCID-w13x-3rp9-wyej
93
vulnerability VCID-wea9-egep-h7g5
94
vulnerability VCID-xa4m-xpa9-v7h8
95
vulnerability VCID-xh7y-56vy-5ud8
96
vulnerability VCID-xtdg-uj46-rkcm
97
vulnerability VCID-xy6y-312d-rygj
98
vulnerability VCID-y32z-2d3f-gkgw
99
vulnerability VCID-yzx1-4psv-7bhr
100
vulnerability VCID-zdq2-dhb2-6kaq
101
vulnerability VCID-zkea-ge1t-z7gn
102
vulnerability VCID-zspb-bd6j-wyd2
103
vulnerability VCID-zw9b-6vkf-3fc6
104
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.3.1
aliases GHSA-96jg-pmc4-cx39
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ayw6-8pn4-17eb
2
url VCID-mh4f-vtfj-hbb1
vulnerability_id VCID-mh4f-vtfj-hbb1
summary 
TYPO3 Cross-Site Scripting in Form Framework
Failing to properly encode user input, frontend forms handled by the form framework (system extension “form”) are vulnerable to cross-site scripting.
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/2019-01-22-6.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/2019-01-22-6.yaml
1
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
2
reference_url https://github.com/TYPO3-CMS/core/commit/3b8b8b4416b921df4ccc7c5b4a8e9a069562be35
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core/commit/3b8b8b4416b921df4ccc7c5b4a8e9a069562be35
3
reference_url https://github.com/TYPO3-CMS/core/commit/a0e917008320e24c26780ba385fbfe738fcd45b9
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core/commit/a0e917008320e24c26780ba385fbfe738fcd45b9
4
reference_url https://typo3.org/security/advisory/typo3-core-sa-2019-007
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2019-007
5
reference_url https://github.com/advisories/GHSA-4459-qrcc-vfcf
reference_id GHSA-4459-qrcc-vfcf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4459-qrcc-vfcf
fixed_packages
0
url pkg:composer/typo3/cms-core@8.7.23
purl pkg:composer/typo3/cms-core@8.7.23
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2meq-x4kd-bbdn
1
vulnerability VCID-3n2r-awja-dug9
2
vulnerability VCID-3v4n-fzxa-bfaw
3
vulnerability VCID-4jpa-6fqh-hbfg
4
vulnerability VCID-5jgb-dsyx-hyb4
5
vulnerability VCID-5paq-5frf-43ed
6
vulnerability VCID-5u4q-m66t-wqcj
7
vulnerability VCID-9g62-zd1x-3bdg
8
vulnerability VCID-9gpp-ez8w-rqav
9
vulnerability VCID-9x6r-56xm-n7h7
10
vulnerability VCID-axvk-13qf-tka7
11
vulnerability VCID-b6er-h7dm-3bev
12
vulnerability VCID-bajy-qbwq-fufn
13
vulnerability VCID-cm14-t8uv-k3es
14
vulnerability VCID-dsu7-jjjq-f3e1
15
vulnerability VCID-eajg-ctpd-2bby
16
vulnerability VCID-ekfd-wp8z-d7e1
17
vulnerability VCID-f963-qur3-2qb7
18
vulnerability VCID-g4uc-qeb6-myed
19
vulnerability VCID-gcnj-6qb6-pbgz
20
vulnerability VCID-gv1b-xtv4-4yg3
21
vulnerability VCID-h6y3-7gsq-skh2
22
vulnerability VCID-he5m-6wj4-rbhc
23
vulnerability VCID-hhmn-yz5p-xkap
24
vulnerability VCID-mnz3-rj21-67ad
25
vulnerability VCID-n15v-ta9h-6ffb
26
vulnerability VCID-n7ng-zkkb-2qaz
27
vulnerability VCID-pmzz-9rws-4ud5
28
vulnerability VCID-pss5-as4b-cyf2
29
vulnerability VCID-q8hy-wjd9-nbgp
30
vulnerability VCID-s53a-f91p-huf4
31
vulnerability VCID-s55j-8hbt-akhn
32
vulnerability VCID-s64f-x81f-b7ce
33
vulnerability VCID-stzu-sxe6-5yf5
34
vulnerability VCID-swnc-ke6h-ekew
35
vulnerability VCID-t1n7-eswt-73gw
36
vulnerability VCID-t3jn-vwbx-u7cr
37
vulnerability VCID-taj6-zj2n-5kg8
38
vulnerability VCID-tnjd-pyys-akav
39
vulnerability VCID-vxry-uvph-kbfd
40
vulnerability VCID-vyvy-y3cw-hbgr
41
vulnerability VCID-xa4m-xpa9-v7h8
42
vulnerability VCID-xh7y-56vy-5ud8
43
vulnerability VCID-y32z-2d3f-gkgw
44
vulnerability VCID-zdq2-dhb2-6kaq
45
vulnerability VCID-zkea-ge1t-z7gn
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.23
1
url pkg:composer/typo3/cms-core@9.5.4
purl pkg:composer/typo3/cms-core@9.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2meq-x4kd-bbdn
1
vulnerability VCID-2mn6-mdmz-4yd9
2
vulnerability VCID-3n2r-awja-dug9
3
vulnerability VCID-3v4n-fzxa-bfaw
4
vulnerability VCID-461j-9hrc-gfbc
5
vulnerability VCID-4jpa-6fqh-hbfg
6
vulnerability VCID-4mkw-tv16-jyca
7
vulnerability VCID-4t9s-p25a-cfas
8
vulnerability VCID-543x-cnbz-1kb9
9
vulnerability VCID-58js-jzm4-4fc7
10
vulnerability VCID-5jgb-dsyx-hyb4
11
vulnerability VCID-5kzs-ex81-bbaj
12
vulnerability VCID-5paq-5frf-43ed
13
vulnerability VCID-5u4q-m66t-wqcj
14
vulnerability VCID-65ue-7jd9-23gf
15
vulnerability VCID-6a9t-8dmn-s3bv
16
vulnerability VCID-8d2m-1ffv-jqe1
17
vulnerability VCID-9g62-zd1x-3bdg
18
vulnerability VCID-9gpp-ez8w-rqav
19
vulnerability VCID-9x6r-56xm-n7h7
20
vulnerability VCID-a49c-fqrj-nbb3
21
vulnerability VCID-axvk-13qf-tka7
22
vulnerability VCID-b6er-h7dm-3bev
23
vulnerability VCID-bajy-qbwq-fufn
24
vulnerability VCID-cm14-t8uv-k3es
25
vulnerability VCID-d8d1-sat6-muhe
26
vulnerability VCID-dmzb-gkdn-6bcm
27
vulnerability VCID-dsu7-jjjq-f3e1
28
vulnerability VCID-e32h-8q61-hbgc
29
vulnerability VCID-eajg-ctpd-2bby
30
vulnerability VCID-ekfd-wp8z-d7e1
31
vulnerability VCID-f963-qur3-2qb7
32
vulnerability VCID-g4uc-qeb6-myed
33
vulnerability VCID-gcnj-6qb6-pbgz
34
vulnerability VCID-gv1b-xtv4-4yg3
35
vulnerability VCID-h6y3-7gsq-skh2
36
vulnerability VCID-he5m-6wj4-rbhc
37
vulnerability VCID-hhmn-yz5p-xkap
38
vulnerability VCID-kj9x-psfz-2ug1
39
vulnerability VCID-mnz3-rj21-67ad
40
vulnerability VCID-mud2-s4rc-fuf6
41
vulnerability VCID-n15v-ta9h-6ffb
42
vulnerability VCID-n7ng-zkkb-2qaz
43
vulnerability VCID-nubu-f1sc-gbes
44
vulnerability VCID-nxq4-m52q-yuh4
45
vulnerability VCID-phgh-sd4m-zbdx
46
vulnerability VCID-pmzz-9rws-4ud5
47
vulnerability VCID-pss5-as4b-cyf2
48
vulnerability VCID-q8hy-wjd9-nbgp
49
vulnerability VCID-raxk-rm9v-hubn
50
vulnerability VCID-remd-55jh-r3g5
51
vulnerability VCID-s53a-f91p-huf4
52
vulnerability VCID-s55j-8hbt-akhn
53
vulnerability VCID-s64f-x81f-b7ce
54
vulnerability VCID-stzu-sxe6-5yf5
55
vulnerability VCID-sw7v-fbjk-13hy
56
vulnerability VCID-swnc-ke6h-ekew
57
vulnerability VCID-t1n7-eswt-73gw
58
vulnerability VCID-t3jn-vwbx-u7cr
59
vulnerability VCID-taj6-zj2n-5kg8
60
vulnerability VCID-tnjd-pyys-akav
61
vulnerability VCID-u9bx-8e86-wbew
62
vulnerability VCID-ve7g-8st5-wffb
63
vulnerability VCID-vxry-uvph-kbfd
64
vulnerability VCID-vyvy-y3cw-hbgr
65
vulnerability VCID-w13x-3rp9-wyej
66
vulnerability VCID-xa4m-xpa9-v7h8
67
vulnerability VCID-xh7y-56vy-5ud8
68
vulnerability VCID-xtdg-uj46-rkcm
69
vulnerability VCID-xy6y-312d-rygj
70
vulnerability VCID-y32z-2d3f-gkgw
71
vulnerability VCID-zdq2-dhb2-6kaq
72
vulnerability VCID-zkea-ge1t-z7gn
73
vulnerability VCID-zn99-ywte-33g6
74
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.5.4
aliases GHSA-4459-qrcc-vfcf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mh4f-vtfj-hbb1
3
url VCID-wkm6-cgc8-bfa8
vulnerability_id VCID-wkm6-cgc8-bfa8
summary Privilege Escalation & SQL Injection in TYPO3 CMS.
references
0
reference_url https://typo3.org/security/advisory/typo3-core-sa-2018-003/
reference_id
reference_type
scores
url https://typo3.org/security/advisory/typo3-core-sa-2018-003/
fixed_packages
0
url pkg:composer/typo3/cms-core@8.7.17
purl pkg:composer/typo3/cms-core@8.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21e8-x7mp-hugk
1
vulnerability VCID-2meq-x4kd-bbdn
2
vulnerability VCID-3gg5-1921-rbfs
3
vulnerability VCID-3n2r-awja-dug9
4
vulnerability VCID-3v4n-fzxa-bfaw
5
vulnerability VCID-4btk-jt5n-2ugf
6
vulnerability VCID-4jpa-6fqh-hbfg
7
vulnerability VCID-551q-gpyd-ffe8
8
vulnerability VCID-5jgb-dsyx-hyb4
9
vulnerability VCID-5mxm-88r9-hfey
10
vulnerability VCID-5paq-5frf-43ed
11
vulnerability VCID-5u4q-m66t-wqcj
12
vulnerability VCID-5z59-dn7p-xbc5
13
vulnerability VCID-6xmj-wbea-r7ex
14
vulnerability VCID-9g62-zd1x-3bdg
15
vulnerability VCID-9gpp-ez8w-rqav
16
vulnerability VCID-9x6r-56xm-n7h7
17
vulnerability VCID-9zqs-hjay-fkev
18
vulnerability VCID-a563-vtwa-hkbr
19
vulnerability VCID-axaf-45kr-kbfe
20
vulnerability VCID-axvk-13qf-tka7
21
vulnerability VCID-b6er-h7dm-3bev
22
vulnerability VCID-b81w-n2ne-z3ee
23
vulnerability VCID-bajy-qbwq-fufn
24
vulnerability VCID-bnne-7p2q-eqd2
25
vulnerability VCID-cm14-t8uv-k3es
26
vulnerability VCID-d99v-v9cj-zfh2
27
vulnerability VCID-dj88-f3p8-cfbn
28
vulnerability VCID-dm97-51uu-r7gw
29
vulnerability VCID-dsu7-jjjq-f3e1
30
vulnerability VCID-e268-wagv-sbex
31
vulnerability VCID-eajg-ctpd-2bby
32
vulnerability VCID-ehzg-bzrd-kbcc
33
vulnerability VCID-ekfd-wp8z-d7e1
34
vulnerability VCID-f4bv-pzdy-dfcb
35
vulnerability VCID-f963-qur3-2qb7
36
vulnerability VCID-g4uc-qeb6-myed
37
vulnerability VCID-gcnj-6qb6-pbgz
38
vulnerability VCID-gv1b-xtv4-4yg3
39
vulnerability VCID-h6y3-7gsq-skh2
40
vulnerability VCID-he5m-6wj4-rbhc
41
vulnerability VCID-hhmn-yz5p-xkap
42
vulnerability VCID-j77k-hjgx-5kc5
43
vulnerability VCID-k8af-cg9k-87a9
44
vulnerability VCID-mh4f-vtfj-hbb1
45
vulnerability VCID-mnz3-rj21-67ad
46
vulnerability VCID-n15v-ta9h-6ffb
47
vulnerability VCID-n1cb-8py6-bbhu
48
vulnerability VCID-n78p-x7hh-gqcf
49
vulnerability VCID-n7ng-zkkb-2qaz
50
vulnerability VCID-pmzz-9rws-4ud5
51
vulnerability VCID-pss5-as4b-cyf2
52
vulnerability VCID-px44-19tj-h7aa
53
vulnerability VCID-q8hy-wjd9-nbgp
54
vulnerability VCID-qb4j-9tz7-m7a2
55
vulnerability VCID-rdrs-mhaw-b3ge
56
vulnerability VCID-rwqs-3ktq-qqbd
57
vulnerability VCID-s53a-f91p-huf4
58
vulnerability VCID-s55j-8hbt-akhn
59
vulnerability VCID-s64f-x81f-b7ce
60
vulnerability VCID-stzu-sxe6-5yf5
61
vulnerability VCID-swnc-ke6h-ekew
62
vulnerability VCID-t1n7-eswt-73gw
63
vulnerability VCID-t3jn-vwbx-u7cr
64
vulnerability VCID-taj6-zj2n-5kg8
65
vulnerability VCID-tnjd-pyys-akav
66
vulnerability VCID-tw1y-t4qj-j3d1
67
vulnerability VCID-vxry-uvph-kbfd
68
vulnerability VCID-vyvy-y3cw-hbgr
69
vulnerability VCID-wea9-egep-h7g5
70
vulnerability VCID-xa4m-xpa9-v7h8
71
vulnerability VCID-xh7y-56vy-5ud8
72
vulnerability VCID-y32z-2d3f-gkgw
73
vulnerability VCID-zdq2-dhb2-6kaq
74
vulnerability VCID-zkea-ge1t-z7gn
75
vulnerability VCID-zspb-bd6j-wyd2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.17
1
url pkg:composer/typo3/cms-core@9.3.2
purl pkg:composer/typo3/cms-core@9.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21e8-x7mp-hugk
1
vulnerability VCID-2meq-x4kd-bbdn
2
vulnerability VCID-2mn6-mdmz-4yd9
3
vulnerability VCID-3gg5-1921-rbfs
4
vulnerability VCID-3n2r-awja-dug9
5
vulnerability VCID-3v4n-fzxa-bfaw
6
vulnerability VCID-461j-9hrc-gfbc
7
vulnerability VCID-4btk-jt5n-2ugf
8
vulnerability VCID-4jpa-6fqh-hbfg
9
vulnerability VCID-4mkw-tv16-jyca
10
vulnerability VCID-4t9s-p25a-cfas
11
vulnerability VCID-543x-cnbz-1kb9
12
vulnerability VCID-551q-gpyd-ffe8
13
vulnerability VCID-58js-jzm4-4fc7
14
vulnerability VCID-5jgb-dsyx-hyb4
15
vulnerability VCID-5kzs-ex81-bbaj
16
vulnerability VCID-5paq-5frf-43ed
17
vulnerability VCID-5u4q-m66t-wqcj
18
vulnerability VCID-5z59-dn7p-xbc5
19
vulnerability VCID-65ue-7jd9-23gf
20
vulnerability VCID-6a9t-8dmn-s3bv
21
vulnerability VCID-6xmj-wbea-r7ex
22
vulnerability VCID-8d2m-1ffv-jqe1
23
vulnerability VCID-9g62-zd1x-3bdg
24
vulnerability VCID-9gpp-ez8w-rqav
25
vulnerability VCID-9x6r-56xm-n7h7
26
vulnerability VCID-9zqs-hjay-fkev
27
vulnerability VCID-a49c-fqrj-nbb3
28
vulnerability VCID-a563-vtwa-hkbr
29
vulnerability VCID-axaf-45kr-kbfe
30
vulnerability VCID-axvk-13qf-tka7
31
vulnerability VCID-b6er-h7dm-3bev
32
vulnerability VCID-bajy-qbwq-fufn
33
vulnerability VCID-bnne-7p2q-eqd2
34
vulnerability VCID-cm14-t8uv-k3es
35
vulnerability VCID-d8d1-sat6-muhe
36
vulnerability VCID-d99v-v9cj-zfh2
37
vulnerability VCID-dj88-f3p8-cfbn
38
vulnerability VCID-dm97-51uu-r7gw
39
vulnerability VCID-dmzb-gkdn-6bcm
40
vulnerability VCID-dsu7-jjjq-f3e1
41
vulnerability VCID-e268-wagv-sbex
42
vulnerability VCID-e32h-8q61-hbgc
43
vulnerability VCID-eajg-ctpd-2bby
44
vulnerability VCID-ekfd-wp8z-d7e1
45
vulnerability VCID-f4bv-pzdy-dfcb
46
vulnerability VCID-f963-qur3-2qb7
47
vulnerability VCID-g4uc-qeb6-myed
48
vulnerability VCID-gcnj-6qb6-pbgz
49
vulnerability VCID-gv1b-xtv4-4yg3
50
vulnerability VCID-h6y3-7gsq-skh2
51
vulnerability VCID-he5m-6wj4-rbhc
52
vulnerability VCID-hhmn-yz5p-xkap
53
vulnerability VCID-k8af-cg9k-87a9
54
vulnerability VCID-kj9x-psfz-2ug1
55
vulnerability VCID-mh4f-vtfj-hbb1
56
vulnerability VCID-mnz3-rj21-67ad
57
vulnerability VCID-mud2-s4rc-fuf6
58
vulnerability VCID-n15v-ta9h-6ffb
59
vulnerability VCID-n1cb-8py6-bbhu
60
vulnerability VCID-n78p-x7hh-gqcf
61
vulnerability VCID-n7ng-zkkb-2qaz
62
vulnerability VCID-nubu-f1sc-gbes
63
vulnerability VCID-nxq4-m52q-yuh4
64
vulnerability VCID-p715-yexd-jfgc
65
vulnerability VCID-phgh-sd4m-zbdx
66
vulnerability VCID-pmzz-9rws-4ud5
67
vulnerability VCID-pss5-as4b-cyf2
68
vulnerability VCID-px44-19tj-h7aa
69
vulnerability VCID-q8hy-wjd9-nbgp
70
vulnerability VCID-qb4j-9tz7-m7a2
71
vulnerability VCID-raxk-rm9v-hubn
72
vulnerability VCID-rdrs-mhaw-b3ge
73
vulnerability VCID-remd-55jh-r3g5
74
vulnerability VCID-rwqs-3ktq-qqbd
75
vulnerability VCID-s53a-f91p-huf4
76
vulnerability VCID-s55j-8hbt-akhn
77
vulnerability VCID-s64f-x81f-b7ce
78
vulnerability VCID-stzu-sxe6-5yf5
79
vulnerability VCID-sw7v-fbjk-13hy
80
vulnerability VCID-swnc-ke6h-ekew
81
vulnerability VCID-t1n7-eswt-73gw
82
vulnerability VCID-t3jn-vwbx-u7cr
83
vulnerability VCID-taj6-zj2n-5kg8
84
vulnerability VCID-tnjd-pyys-akav
85
vulnerability VCID-tw1y-t4qj-j3d1
86
vulnerability VCID-u9bx-8e86-wbew
87
vulnerability VCID-ve7g-8st5-wffb
88
vulnerability VCID-vxry-uvph-kbfd
89
vulnerability VCID-vyvy-y3cw-hbgr
90
vulnerability VCID-w13x-3rp9-wyej
91
vulnerability VCID-wea9-egep-h7g5
92
vulnerability VCID-xa4m-xpa9-v7h8
93
vulnerability VCID-xh7y-56vy-5ud8
94
vulnerability VCID-xtdg-uj46-rkcm
95
vulnerability VCID-xy6y-312d-rygj
96
vulnerability VCID-y32z-2d3f-gkgw
97
vulnerability VCID-yzx1-4psv-7bhr
98
vulnerability VCID-zdq2-dhb2-6kaq
99
vulnerability VCID-zkea-ge1t-z7gn
100
vulnerability VCID-zspb-bd6j-wyd2
101
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.3.2
aliases 2018-07-12-3
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wkm6-cgc8-bfa8
4
url VCID-zw9b-6vkf-3fc6
vulnerability_id VCID-zw9b-6vkf-3fc6
summary 
TYPO3 CMS Privilege Escalation and SQL Injection
Failing to properly dissociate system related configuration from user generated configuration, the Form Framework (system extension "form") is vulnerable to SQL injection and Privilege Escalation. Basically instructions can be persisted to a form definition file that were not configured to be modified - this applies to definitions managed using the form editor module as well as direct file upload using the regular file list module. A valid backend user account as well as having system extension form activated are needed in order to exploit this vulnerability.
references
0
reference_url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/2018-07-12-3.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/2018-07-12-3.yaml
1
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
2
reference_url https://github.com/TYPO3-CMS/core/commit/5e3ed52854ea8192f1c0e2ef30f434e74ba6d253
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core/commit/5e3ed52854ea8192f1c0e2ef30f434e74ba6d253
3
reference_url https://github.com/TYPO3-CMS/core/commit/a0a6271dc8f715b5b6859771333d57925dfb63bc
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core/commit/a0a6271dc8f715b5b6859771333d57925dfb63bc
4
reference_url https://github.com/TYPO3-CMS/core/commit/e70d7c66110a0919b39bccdfdc73cbfd7f504dfc
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core/commit/e70d7c66110a0919b39bccdfdc73cbfd7f504dfc
5
reference_url https://github.com/TYPO3-CMS/core/commit/eddc7635fb3447f0fb69831855f4095de8e12350
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core/commit/eddc7635fb3447f0fb69831855f4095de8e12350
6
reference_url https://typo3.org/security/advisory/typo3-core-sa-2018-003
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2018-003
7
reference_url https://github.com/advisories/GHSA-45wj-jv2h-jwrf
reference_id GHSA-45wj-jv2h-jwrf
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-45wj-jv2h-jwrf
fixed_packages
0
url pkg:composer/typo3/cms-core@8.7.17
purl pkg:composer/typo3/cms-core@8.7.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21e8-x7mp-hugk
1
vulnerability VCID-2meq-x4kd-bbdn
2
vulnerability VCID-3gg5-1921-rbfs
3
vulnerability VCID-3n2r-awja-dug9
4
vulnerability VCID-3v4n-fzxa-bfaw
5
vulnerability VCID-4btk-jt5n-2ugf
6
vulnerability VCID-4jpa-6fqh-hbfg
7
vulnerability VCID-551q-gpyd-ffe8
8
vulnerability VCID-5jgb-dsyx-hyb4
9
vulnerability VCID-5mxm-88r9-hfey
10
vulnerability VCID-5paq-5frf-43ed
11
vulnerability VCID-5u4q-m66t-wqcj
12
vulnerability VCID-5z59-dn7p-xbc5
13
vulnerability VCID-6xmj-wbea-r7ex
14
vulnerability VCID-9g62-zd1x-3bdg
15
vulnerability VCID-9gpp-ez8w-rqav
16
vulnerability VCID-9x6r-56xm-n7h7
17
vulnerability VCID-9zqs-hjay-fkev
18
vulnerability VCID-a563-vtwa-hkbr
19
vulnerability VCID-axaf-45kr-kbfe
20
vulnerability VCID-axvk-13qf-tka7
21
vulnerability VCID-b6er-h7dm-3bev
22
vulnerability VCID-b81w-n2ne-z3ee
23
vulnerability VCID-bajy-qbwq-fufn
24
vulnerability VCID-bnne-7p2q-eqd2
25
vulnerability VCID-cm14-t8uv-k3es
26
vulnerability VCID-d99v-v9cj-zfh2
27
vulnerability VCID-dj88-f3p8-cfbn
28
vulnerability VCID-dm97-51uu-r7gw
29
vulnerability VCID-dsu7-jjjq-f3e1
30
vulnerability VCID-e268-wagv-sbex
31
vulnerability VCID-eajg-ctpd-2bby
32
vulnerability VCID-ehzg-bzrd-kbcc
33
vulnerability VCID-ekfd-wp8z-d7e1
34
vulnerability VCID-f4bv-pzdy-dfcb
35
vulnerability VCID-f963-qur3-2qb7
36
vulnerability VCID-g4uc-qeb6-myed
37
vulnerability VCID-gcnj-6qb6-pbgz
38
vulnerability VCID-gv1b-xtv4-4yg3
39
vulnerability VCID-h6y3-7gsq-skh2
40
vulnerability VCID-he5m-6wj4-rbhc
41
vulnerability VCID-hhmn-yz5p-xkap
42
vulnerability VCID-j77k-hjgx-5kc5
43
vulnerability VCID-k8af-cg9k-87a9
44
vulnerability VCID-mh4f-vtfj-hbb1
45
vulnerability VCID-mnz3-rj21-67ad
46
vulnerability VCID-n15v-ta9h-6ffb
47
vulnerability VCID-n1cb-8py6-bbhu
48
vulnerability VCID-n78p-x7hh-gqcf
49
vulnerability VCID-n7ng-zkkb-2qaz
50
vulnerability VCID-pmzz-9rws-4ud5
51
vulnerability VCID-pss5-as4b-cyf2
52
vulnerability VCID-px44-19tj-h7aa
53
vulnerability VCID-q8hy-wjd9-nbgp
54
vulnerability VCID-qb4j-9tz7-m7a2
55
vulnerability VCID-rdrs-mhaw-b3ge
56
vulnerability VCID-rwqs-3ktq-qqbd
57
vulnerability VCID-s53a-f91p-huf4
58
vulnerability VCID-s55j-8hbt-akhn
59
vulnerability VCID-s64f-x81f-b7ce
60
vulnerability VCID-stzu-sxe6-5yf5
61
vulnerability VCID-swnc-ke6h-ekew
62
vulnerability VCID-t1n7-eswt-73gw
63
vulnerability VCID-t3jn-vwbx-u7cr
64
vulnerability VCID-taj6-zj2n-5kg8
65
vulnerability VCID-tnjd-pyys-akav
66
vulnerability VCID-tw1y-t4qj-j3d1
67
vulnerability VCID-vxry-uvph-kbfd
68
vulnerability VCID-vyvy-y3cw-hbgr
69
vulnerability VCID-wea9-egep-h7g5
70
vulnerability VCID-xa4m-xpa9-v7h8
71
vulnerability VCID-xh7y-56vy-5ud8
72
vulnerability VCID-y32z-2d3f-gkgw
73
vulnerability VCID-zdq2-dhb2-6kaq
74
vulnerability VCID-zkea-ge1t-z7gn
75
vulnerability VCID-zspb-bd6j-wyd2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.7.17
1
url pkg:composer/typo3/cms-core@9.3.2
purl pkg:composer/typo3/cms-core@9.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-21e8-x7mp-hugk
1
vulnerability VCID-2meq-x4kd-bbdn
2
vulnerability VCID-2mn6-mdmz-4yd9
3
vulnerability VCID-3gg5-1921-rbfs
4
vulnerability VCID-3n2r-awja-dug9
5
vulnerability VCID-3v4n-fzxa-bfaw
6
vulnerability VCID-461j-9hrc-gfbc
7
vulnerability VCID-4btk-jt5n-2ugf
8
vulnerability VCID-4jpa-6fqh-hbfg
9
vulnerability VCID-4mkw-tv16-jyca
10
vulnerability VCID-4t9s-p25a-cfas
11
vulnerability VCID-543x-cnbz-1kb9
12
vulnerability VCID-551q-gpyd-ffe8
13
vulnerability VCID-58js-jzm4-4fc7
14
vulnerability VCID-5jgb-dsyx-hyb4
15
vulnerability VCID-5kzs-ex81-bbaj
16
vulnerability VCID-5paq-5frf-43ed
17
vulnerability VCID-5u4q-m66t-wqcj
18
vulnerability VCID-5z59-dn7p-xbc5
19
vulnerability VCID-65ue-7jd9-23gf
20
vulnerability VCID-6a9t-8dmn-s3bv
21
vulnerability VCID-6xmj-wbea-r7ex
22
vulnerability VCID-8d2m-1ffv-jqe1
23
vulnerability VCID-9g62-zd1x-3bdg
24
vulnerability VCID-9gpp-ez8w-rqav
25
vulnerability VCID-9x6r-56xm-n7h7
26
vulnerability VCID-9zqs-hjay-fkev
27
vulnerability VCID-a49c-fqrj-nbb3
28
vulnerability VCID-a563-vtwa-hkbr
29
vulnerability VCID-axaf-45kr-kbfe
30
vulnerability VCID-axvk-13qf-tka7
31
vulnerability VCID-b6er-h7dm-3bev
32
vulnerability VCID-bajy-qbwq-fufn
33
vulnerability VCID-bnne-7p2q-eqd2
34
vulnerability VCID-cm14-t8uv-k3es
35
vulnerability VCID-d8d1-sat6-muhe
36
vulnerability VCID-d99v-v9cj-zfh2
37
vulnerability VCID-dj88-f3p8-cfbn
38
vulnerability VCID-dm97-51uu-r7gw
39
vulnerability VCID-dmzb-gkdn-6bcm
40
vulnerability VCID-dsu7-jjjq-f3e1
41
vulnerability VCID-e268-wagv-sbex
42
vulnerability VCID-e32h-8q61-hbgc
43
vulnerability VCID-eajg-ctpd-2bby
44
vulnerability VCID-ekfd-wp8z-d7e1
45
vulnerability VCID-f4bv-pzdy-dfcb
46
vulnerability VCID-f963-qur3-2qb7
47
vulnerability VCID-g4uc-qeb6-myed
48
vulnerability VCID-gcnj-6qb6-pbgz
49
vulnerability VCID-gv1b-xtv4-4yg3
50
vulnerability VCID-h6y3-7gsq-skh2
51
vulnerability VCID-he5m-6wj4-rbhc
52
vulnerability VCID-hhmn-yz5p-xkap
53
vulnerability VCID-k8af-cg9k-87a9
54
vulnerability VCID-kj9x-psfz-2ug1
55
vulnerability VCID-mh4f-vtfj-hbb1
56
vulnerability VCID-mnz3-rj21-67ad
57
vulnerability VCID-mud2-s4rc-fuf6
58
vulnerability VCID-n15v-ta9h-6ffb
59
vulnerability VCID-n1cb-8py6-bbhu
60
vulnerability VCID-n78p-x7hh-gqcf
61
vulnerability VCID-n7ng-zkkb-2qaz
62
vulnerability VCID-nubu-f1sc-gbes
63
vulnerability VCID-nxq4-m52q-yuh4
64
vulnerability VCID-p715-yexd-jfgc
65
vulnerability VCID-phgh-sd4m-zbdx
66
vulnerability VCID-pmzz-9rws-4ud5
67
vulnerability VCID-pss5-as4b-cyf2
68
vulnerability VCID-px44-19tj-h7aa
69
vulnerability VCID-q8hy-wjd9-nbgp
70
vulnerability VCID-qb4j-9tz7-m7a2
71
vulnerability VCID-raxk-rm9v-hubn
72
vulnerability VCID-rdrs-mhaw-b3ge
73
vulnerability VCID-remd-55jh-r3g5
74
vulnerability VCID-rwqs-3ktq-qqbd
75
vulnerability VCID-s53a-f91p-huf4
76
vulnerability VCID-s55j-8hbt-akhn
77
vulnerability VCID-s64f-x81f-b7ce
78
vulnerability VCID-stzu-sxe6-5yf5
79
vulnerability VCID-sw7v-fbjk-13hy
80
vulnerability VCID-swnc-ke6h-ekew
81
vulnerability VCID-t1n7-eswt-73gw
82
vulnerability VCID-t3jn-vwbx-u7cr
83
vulnerability VCID-taj6-zj2n-5kg8
84
vulnerability VCID-tnjd-pyys-akav
85
vulnerability VCID-tw1y-t4qj-j3d1
86
vulnerability VCID-u9bx-8e86-wbew
87
vulnerability VCID-ve7g-8st5-wffb
88
vulnerability VCID-vxry-uvph-kbfd
89
vulnerability VCID-vyvy-y3cw-hbgr
90
vulnerability VCID-w13x-3rp9-wyej
91
vulnerability VCID-wea9-egep-h7g5
92
vulnerability VCID-xa4m-xpa9-v7h8
93
vulnerability VCID-xh7y-56vy-5ud8
94
vulnerability VCID-xtdg-uj46-rkcm
95
vulnerability VCID-xy6y-312d-rygj
96
vulnerability VCID-y32z-2d3f-gkgw
97
vulnerability VCID-yzx1-4psv-7bhr
98
vulnerability VCID-zdq2-dhb2-6kaq
99
vulnerability VCID-zkea-ge1t-z7gn
100
vulnerability VCID-zspb-bd6j-wyd2
101
vulnerability VCID-zwgt-rm1f-6bf2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@9.3.2
aliases GHSA-45wj-jv2h-jwrf
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zw9b-6vkf-3fc6
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms-core@8.5.0