| 0 |
| url |
VCID-11sw-6x9k-vued |
| vulnerability_id |
VCID-11sw-6x9k-vued |
| summary |
TYPO3 CMS vulnerable to Arbitrary Code Execution via Form Framework
### Problem
Due to the lack of separating user-submitted data from the internal configuration in the Form Designer backend module, it was possible to inject code instructions to be processed and executed via TypoScript as PHP code.
The existence of individual TypoScript instructions for a particular form item (known as [`formDefinitionOverrides`](https://docs.typo3.org/c/typo3/cms-form/main/en-us/I/Concepts/FrontendRendering/Index.html#form-element-properties)) and a valid backend user account with access to the form module are needed to exploit this vulnerability.
### Solution
Update to TYPO3 versions 8.7.49 ELTS, 9.5.38 ELTS, 10.4.33, 11.5.20, 12.1.1 that fix the problem described above.
### References
* [TYPO3-CORE-SA-2022-015](https://typo3.org/security/advisory/typo3-core-sa-2022-015) |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2022-23503, GHSA-c5wx-6c2c-f7rm, GMS-2022-8132
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-11sw-6x9k-vued |
|
| 1 |
| url |
VCID-11u3-8xzy-jfhh |
| vulnerability_id |
VCID-11u3-8xzy-jfhh |
| summary |
Typo3 Security Misconfiguration in Frontend Session Handling
It has been discovered session data of properly authenticated and logged in frontend users is kept and transformed into an anonymous user session during the logout process. This way the next user using the same client application gains access to previous session data. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GHSA-qr5f-6fcv-w69q
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-11u3-8xzy-jfhh |
|
| 2 |
| url |
VCID-1ffs-9vj5-27hk |
| vulnerability_id |
VCID-1ffs-9vj5-27hk |
| summary |
Path Traversal
Due to improper input validation, attackers can by-pass restrictions of predefined options and submit arbitrary data in the Form Designer backend module of the Form Framework. In the default configuration of the Form Framework this allows attackers to explicitly allow arbitrary mime-types for file uploads - however, default `_fileDenyPattern_` successfully blocked files like `_.htaccess_` or `_malicious.php_`. Besides that, attackers can persist those files in any writable directory of the corresponding TYPO3 installation. A valid backend user account with access to the form module is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.4.14 |
| purl |
pkg:composer/typo3/cms@10.4.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 12 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 13 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 14 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 15 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 16 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 17 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 18 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 19 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 20 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 21 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14 |
|
| 3 |
| url |
pkg:composer/typo3/cms@11.1.1 |
| purl |
pkg:composer/typo3/cms@11.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 18 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 21 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1 |
|
|
| aliases |
CVE-2021-21357, GHSA-3vg7-jw9m-pc3f
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1ffs-9vj5-27hk |
|
| 3 |
| url |
VCID-28fn-ncj5-2ufk |
| vulnerability_id |
VCID-28fn-ncj5-2ufk |
| summary |
TYPO3 Cross-Site Scripting in Online Media Asset Rendering
Failing to properly encode user input, online media asset rendering (`*.youtube` and `*.vimeo` files) is vulnerable to cross-site scripting. A valid backend user account or write access on the server system (e.g. SFTP) is needed in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GHSA-8m6j-p5jv-v69w
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-28fn-ncj5-2ufk |
|
| 4 |
| url |
VCID-2rhr-8vaz-hqfj |
| vulnerability_id |
VCID-2rhr-8vaz-hqfj |
| summary |
Cross-site Scripting
TYPO3 is vulnerable to cross-site scripting. Corresponding rendering instructions via TypoScript functionality HTMLparser does not consider all potentially malicious HTML tag & attribute combinations per default. In default scenarios, a valid backend user account is needed to exploit this vulnerability. In case custom plugins used in the website frontend accept and reflect rich-text content submitted by users, no authentication is required. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.4.19 |
| purl |
pkg:composer/typo3/cms@10.4.19 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 3 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 6 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 7 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 8 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 9 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 10 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 11 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 12 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 13 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 14 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 15 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 16 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.19 |
|
| 3 |
| url |
pkg:composer/typo3/cms@11.3.2 |
| purl |
pkg:composer/typo3/cms@11.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 3 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 6 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 7 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 8 |
| vulnerability |
VCID-b9sw-6tzm-3yhj |
|
| 9 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 10 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 11 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 12 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 13 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 14 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 15 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 16 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 17 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 18 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.2 |
|
|
| aliases |
CVE-2021-32768, GHSA-c5c9-8c6m-727v
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2rhr-8vaz-hqfj |
|
| 5 |
| url |
VCID-2rmv-a83x-9ka8 |
| vulnerability_id |
VCID-2rmv-a83x-9ka8 |
| summary |
TYPO3 CMS Stored Cross-Site Scripting via FileDumpController
> ### Meta
> * CVSS: `CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N/E:F/RL:O/RC:C` (5.0)
### Problem
It has been discovered that the `FileDumpController` (backend and frontend context) is vulnerable to cross-site scripting when malicious files are displayed using this component. A valid backend user account is needed to exploit this vulnerability.
### Solution
Update to TYPO3 version 7.6.58 ELTS, 8.7.48 ELTS, 9.5.37 ELTS, 10.4.32 or 11.5.16 that fix the problem described above.
### Credits
Thanks to Vautia who reported this issue and to TYPO3 core & security team member Oliver Hader who fixed the issue.
### References
* [TYPO3-CORE-SA-2022-009](https://typo3.org/security/advisory/typo3-core-sa-2022-009)
* [Vulnerability Report on huntr.dev](https://huntr.dev/bounties/51e9b709-193c-41fd-bd4a-833aaca0bd4e/) (embargoed +30 days) |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2022-36107, GHSA-9c6w-55cp-5w25
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2rmv-a83x-9ka8 |
|
| 6 |
| url |
VCID-39vn-73mc-jqav |
| vulnerability_id |
VCID-39vn-73mc-jqav |
| summary |
TYPO3 Cross-Site Scripting in Form Framework validation handling
It has been discovered that the output of field validation errors in the Form Framework is vulnerable to cross-site scripting. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.30 |
| purl |
pkg:composer/typo3/cms@8.7.30 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 9 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 12 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 15 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 6 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 17 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 21 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 22 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 23 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 24 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 25 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 26 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.1 |
| purl |
pkg:composer/typo3/cms@10.2.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 7 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 8 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 9 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 10 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 13 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 20 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 21 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 22 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 23 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 24 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 25 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 26 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 32 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 33 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 34 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 35 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 36 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 37 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 38 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 39 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 40 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1 |
|
|
| aliases |
GHSA-v8m4-3w37-ghxx
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-39vn-73mc-jqav |
|
| 7 |
| url |
VCID-3ugj-6m1e-e3hr |
| vulnerability_id |
VCID-3ugj-6m1e-e3hr |
| summary |
Cross-site Scripting
Cross-Site Scripting in Online Media Asset Rendering. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-97
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3ugj-6m1e-e3hr |
|
| 8 |
| url |
VCID-4eym-e6vt-8fbs |
| vulnerability_id |
VCID-4eym-e6vt-8fbs |
| summary |
Code Injection
Arbitrary Code Execution and Cross-Site Scripting in Backend API. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-188
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4eym-e6vt-8fbs |
|
| 9 |
| url |
VCID-5k47-9k7t-rqak |
| vulnerability_id |
VCID-5k47-9k7t-rqak |
| summary |
TYPO3 Vulnerable to Insecure Deserialization
TYPO3 8.x through 8.7.26 and 9.x through 9.5.7 allows Deserialization of Untrusted Data. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
CVE-2019-12747, GHSA-86hp-xrhj-fhpq
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5k47-9k7t-rqak |
|
| 10 |
| url |
VCID-5u2f-5zzf-j3e4 |
| vulnerability_id |
VCID-5u2f-5zzf-j3e4 |
| summary |
Information Disclosure in TYPO3 CMS
Failing to properly check user permission on file storages, editors could gain knowledge of protected storages and its folders as well as using them in a file collection being rendered in the frontend. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
GHSA-g46h-v2cc-6c94
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5u2f-5zzf-j3e4 |
|
| 11 |
| url |
VCID-66kh-c1dm-8fbf |
| vulnerability_id |
VCID-66kh-c1dm-8fbf |
| summary |
Authentication Bypass in TYPO3 CMS
It has been discovered that TYPO3’s Salted Password system extension (which is a mandatory system component) is vulnerable to Authentication Bypass when using hashing methods which are related by PHP class inheritance. In standard TYPO3 core distributions stored passwords using the blowfish hashing algorithm can be overridden when using MD5 as the default hashing algorithm by just knowing a valid username. Per default the Portable PHP hashing algorithm (PHPass) is used which is not vulnerable. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GHSA-6f9m-v7mp-7jjq
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-66kh-c1dm-8fbf |
|
| 12 |
| url |
VCID-7ch1-q9f4-a7bt |
| vulnerability_id |
VCID-7ch1-q9f4-a7bt |
| summary |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
In Bootstrap, XSS is possible in the data-target property of scrollspy. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
CVE-2018-14041, GHSA-pj7m-g53m-7638
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7ch1-q9f4-a7bt |
|
| 13 |
| url |
VCID-7m6u-k5tp-gkhy |
| vulnerability_id |
VCID-7m6u-k5tp-gkhy |
| summary |
Insecure Deserialization in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-189
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7m6u-k5tp-gkhy |
|
| 14 |
| url |
VCID-848u-w88s-5bbe |
| vulnerability_id |
VCID-848u-w88s-5bbe |
| summary |
Unrestricted Upload of File with Dangerous Type
Due to the lack of ensuring file extensions belong to configured allowed mime-types, attackers can upload arbitrary data with arbitrary file extensions - however, default `_fileDenyPattern_` successfully blocked files like `_.htaccess_` or `_malicious.php_`. Additionally, `_UploadedFileReferenceConverter_` transforming uploaded files into proper FileReference domain model objects handles possible file uploads for other extensions as well - given those extensions use the Extbase MVC framework, make use of FileReference items in their direct or inherited domain model definitions and did not implement their own type converter. In case this scenario applies, `_UploadedFileReferenceConverter_` accepts any file mime-type and persists files in the default location. In any way, uploaded files are placed in the default location `_/fileadmin/user_upload/_`, in most scenarios keeping the submitted filename - which allows attackers to directly reference files, or even correctly guess filenames used by other individuals, disclosing this information. No authentication is required to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.4.14 |
| purl |
pkg:composer/typo3/cms@10.4.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 12 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 13 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 14 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 15 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 16 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 17 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 18 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 19 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 20 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 21 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14 |
|
| 3 |
| url |
pkg:composer/typo3/cms@11.1.1 |
| purl |
pkg:composer/typo3/cms@11.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 18 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 21 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1 |
|
|
| aliases |
CVE-2021-21355, GHSA-2r6j-862c-m2v2
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-848u-w88s-5bbe |
|
| 15 |
| url |
VCID-94r9-hh4g-jkej |
| vulnerability_id |
VCID-94r9-hh4g-jkej |
| summary |
TYPO3 CMS Possible Insecure Deserialization in Extbase Request Handling
It has been discovered that request handling in Extbase can be vulnerable to insecure deserialization. User submitted payload has to be signed with a corresponding HMAC-SHA1 using the sensitive TYPO3 encryptionKey as secret - invalid or unsigned payload is not deserialized.
However, since sensitive information could have been leaked by accident (e.g. in repositories or in commonly known and unprotected backup files), there is the possibility that attackers know the private encryptionKey and are able to calculate the required HMAC-SHA1 to allow a malicious payload to be deserialized.
Requirements for successfully exploiting this vulnerability (all of the following):
- rendering at least one Extbase plugin in the frontend
- encryptionKey has been leaked (from LocalConfiguration.php or corresponding .env file) |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.30 |
| purl |
pkg:composer/typo3/cms@8.7.30 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 9 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 12 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 15 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 6 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 17 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 21 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 22 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 23 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 24 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 25 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 26 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
|
| aliases |
GHSA-hh95-5xm5-v8v7
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-94r9-hh4g-jkej |
|
| 16 |
| url |
VCID-953t-q1cr-zyd6 |
| vulnerability_id |
VCID-953t-q1cr-zyd6 |
| summary |
Cross-site Scripting
Cross-Site Scripting in Backend Modal Component. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-98
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-953t-q1cr-zyd6 |
|
| 17 |
| url |
VCID-9726-hafj-wkay |
| vulnerability_id |
VCID-9726-hafj-wkay |
| summary |
Information Disclosure in TYPO3 CMS
HTTP requests being performed using the TYPO3 API expose the specific TYPO3 version to the called endpoint. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
GHSA-c7p6-3c9c-f88q
|
| risk_score |
1.6 |
| exploitability |
0.5 |
| weighted_severity |
3.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9726-hafj-wkay |
|
| 18 |
| url |
VCID-9saf-w56y-pugz |
| vulnerability_id |
VCID-9saf-w56y-pugz |
| summary |
Information Disclosure in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-5u2f-5zzf-j3e4 |
|
| 11 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 18 |
| vulnerability |
VCID-9726-hafj-wkay |
|
| 19 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 20 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 21 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 22 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 23 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 24 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 25 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 26 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 27 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 28 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 29 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 30 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 35 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 36 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 37 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 38 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 39 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 40 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 41 |
| vulnerability |
VCID-j8sh-5evd-dkaz |
|
| 42 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 43 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 44 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 45 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 50 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 51 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 52 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 53 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 54 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 55 |
| vulnerability |
VCID-q2ym-y2rz-1bdn |
|
| 56 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 57 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 58 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 59 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 60 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 61 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 62 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 63 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 64 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 65 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 66 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 67 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 68 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 69 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 70 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 71 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 72 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 73 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 74 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 75 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 76 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 77 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 78 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 79 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 80 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 81 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 82 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 83 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 84 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 85 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-351
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9saf-w56y-pugz |
|
| 19 |
| url |
VCID-9yu1-z7c2-t3fj |
| vulnerability_id |
VCID-9yu1-z7c2-t3fj |
| summary |
TYPO3 Cross-Site Scripting in Form Framework
Failing to properly encode user input, frontend forms handled by the form framework (system extension “form”) are vulnerable to cross-site scripting. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GHSA-4h5c-5g25-v7fh
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9yu1-z7c2-t3fj |
|
| 20 |
| url |
VCID-abjx-8v46-d7d8 |
| vulnerability_id |
VCID-abjx-8v46-d7d8 |
| summary |
Improper Authentication
Authentication Bypass in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-93
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-abjx-8v46-d7d8 |
|
| 21 |
| url |
VCID-am6s-67bm-77dr |
| vulnerability_id |
VCID-am6s-67bm-77dr |
| summary |
Cross-site Scripting
Cross-Site Scripting in Bootstrap CSS toolkit. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-176
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-am6s-67bm-77dr |
|
| 22 |
| url |
VCID-bn3p-39sv-6fdg |
| vulnerability_id |
VCID-bn3p-39sv-6fdg |
| summary |
Improper Access Control
Broken Access Control in Localization Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.0.0 |
| purl |
pkg:composer/typo3/cms@9.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 16 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 17 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 18 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 19 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 20 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 21 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 22 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 23 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 24 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 25 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 26 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 27 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 28 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 29 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 30 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 31 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 32 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 33 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 34 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 35 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 36 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 37 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 38 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 39 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 40 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 41 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 42 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 43 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 44 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 45 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 46 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 47 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 48 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 49 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 50 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 51 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 52 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 53 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 54 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 55 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 56 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 57 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 58 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 59 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 60 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 61 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 62 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 63 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 64 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 65 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 66 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 67 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 68 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 69 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 70 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 71 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 72 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 73 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 74 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 75 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 76 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 77 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 78 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 79 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 80 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 81 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 82 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 83 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 84 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 85 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 86 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 87 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 88 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 89 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 90 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 91 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 92 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 93 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 94 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.0.0 |
|
|
| aliases |
GMS-2019-174
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bn3p-39sv-6fdg |
|
| 23 |
| url |
VCID-buj5-2t53-3kcr |
| vulnerability_id |
VCID-buj5-2t53-3kcr |
| summary |
TYPO3 Information Disclosure of Installed Extensions
It has been discovered that mechanisms used for configuration of RequireJS package loading are susceptible to information disclosure. This way a potential attack can retrieve additional information about installed system and third party extensions. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GHSA-f624-8hfq-5fh3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-buj5-2t53-3kcr |
|
| 24 |
| url |
VCID-dsqm-9q3e-dudw |
| vulnerability_id |
VCID-dsqm-9q3e-dudw |
| summary |
Uncontrolled Resource Consumption
Denial of Service in Online Media Asset Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-102
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dsqm-9q3e-dudw |
|
| 25 |
| url |
VCID-e564-zdku-9fc6 |
| vulnerability_id |
VCID-e564-zdku-9fc6 |
| summary |
Information Disclosure
HTTP requests being performed using the TYPO3 API expose the specific TYPO3 version to the called endpoint. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-006
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e564-zdku-9fc6 |
|
| 26 |
| url |
VCID-emqq-kwjg-3kfk |
| vulnerability_id |
VCID-emqq-kwjg-3kfk |
| summary |
Cross-site Scripting
Cross-Site Scripting in CKEditor. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-104
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-emqq-kwjg-3kfk |
|
| 27 |
| url |
VCID-ev4k-5k1d-2bhu |
| vulnerability_id |
VCID-ev4k-5k1d-2bhu |
| summary |
URL Redirection to Untrusted Site (Open Redirect)
Login Handling is susceptible to open redirection which allows attackers redirecting to arbitrary content, and conducting phishing attacks. No authentication is required in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.4.14 |
| purl |
pkg:composer/typo3/cms@10.4.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 12 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 13 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 14 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 15 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 16 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 17 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 18 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 19 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 20 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 21 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14 |
|
| 3 |
| url |
pkg:composer/typo3/cms@11.1.1 |
| purl |
pkg:composer/typo3/cms@11.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 18 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 21 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1 |
|
|
| aliases |
CVE-2021-21338, GHSA-4jhw-2p6j-5wmp
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ev4k-5k1d-2bhu |
|
| 28 |
| url |
VCID-f319-jpf5-hyex |
| vulnerability_id |
VCID-f319-jpf5-hyex |
| summary |
Typo3 Arbitrary Code Execution and Cross-Site Scripting in Backend API
Backend API configuration using Page TSconfig is vulnerable to arbitrary code execution and cross-site scripting. TSconfig fields of page properties in backend forms can be used to inject malicious sequences. Field tsconfig_includes is vulnerable to directory traversal leading to same scenarios as having direct access to TSconfig settings.
A valid backend user account having access to modify values for fields pages.TSconfig and pages.tsconfig_includes is needed in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GHSA-hww5-6x85-mc24
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f319-jpf5-hyex |
|
| 29 |
| url |
VCID-fdnw-2tz5-4fdr |
| vulnerability_id |
VCID-fdnw-2tz5-4fdr |
| summary |
Uncontrolled Resource Consumption
Denial of Service in Frontend Record Registration. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.0.0 |
| purl |
pkg:composer/typo3/cms@9.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 16 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 17 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 18 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 19 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 20 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 21 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 22 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 23 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 24 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 25 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 26 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 27 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 28 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 29 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 30 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 31 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 32 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 33 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 34 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 35 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 36 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 37 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 38 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 39 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 40 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 41 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 42 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 43 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 44 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 45 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 46 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 47 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 48 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 49 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 50 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 51 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 52 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 53 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 54 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 55 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 56 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 57 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 58 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 59 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 60 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 61 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 62 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 63 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 64 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 65 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 66 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 67 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 68 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 69 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 70 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 71 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 72 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 73 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 74 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 75 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 76 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 77 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 78 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 79 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 80 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 81 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 82 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 83 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 84 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 85 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 86 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 87 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 88 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 89 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 90 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 91 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 92 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 93 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 94 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.0.0 |
|
|
| aliases |
GMS-2018-103
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fdnw-2tz5-4fdr |
|
| 30 |
| url |
VCID-fpa2-ffg1-fyaa |
| vulnerability_id |
VCID-fpa2-ffg1-fyaa |
| summary |
Insecure Deserialization in TYPO3 CMS
It has been discovered that the Form Framework (system extension "form") is vulnerable to Insecure Deserialization when being used with the additional PHP PECL package “yaml”, which is capable of unserializing YAML contents to PHP objects. A valid backend user account as well as having PHP setting "yaml.decode_php" enabled is needed to exploit this vulnerability (which is the default value according to PHP documentation). |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GHSA-8h28-f46f-m87h
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fpa2-ffg1-fyaa |
|
| 31 |
| url |
VCID-fqkc-utex-3kav |
| vulnerability_id |
VCID-fqkc-utex-3kav |
| summary |
Typo3 Security Misconfiguration in User Session Handling
When users change their password existing sessions for that particular user account are not revoked. A valid backend or frontend user account is required in order to make use of this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 23 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 24 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 27 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 28 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 29 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 30 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 31 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 32 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 33 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 20 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 21 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 25 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 26 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 32 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 33 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 34 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 35 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 36 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 37 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 40 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 41 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 42 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
GHSA-g9rv-6g56-65h8
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fqkc-utex-3kav |
|
| 32 |
| url |
VCID-fqkx-v8t5-q3h6 |
| vulnerability_id |
VCID-fqkx-v8t5-q3h6 |
| summary |
Cleartext Storage of Sensitive Information
User session identifiers are stored in cleartext - without processing of additional cryptographic hashing algorithms. This vulnerability cannot be exploited directly and occurs in combination with a chained attack - for example SQL injection in any other component of the system. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.4.14 |
| purl |
pkg:composer/typo3/cms@10.4.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 12 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 13 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 14 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 15 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 16 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 17 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 18 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 19 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 20 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 21 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14 |
|
| 3 |
| url |
pkg:composer/typo3/cms@11.1.1 |
| purl |
pkg:composer/typo3/cms@11.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 18 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 21 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1 |
|
|
| aliases |
CVE-2021-21339, GHSA-qx3w-4864-94ch
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| url |
VCID-fut7-bb1f-37g7 |
| vulnerability_id |
VCID-fut7-bb1f-37g7 |
| summary |
Cross-site Scripting
Cross-Site Scripting in Link Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-186
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fut7-bb1f-37g7 |
|
| 34 |
| url |
VCID-gpv4-4tpd-tbaa |
| vulnerability_id |
VCID-gpv4-4tpd-tbaa |
| summary |
TYPO3 Cross-Site Scripting in Frontend User Login
Failing to properly encode user input, login status display is vulnerable to cross-site scripting in the website frontend. A valid user account is needed in order to exploit this vulnerability - either a backend user or a frontend user having the possibility to modify their user profile.
Template patterns that are affected are
- ###FEUSER_[fieldName]### using system extension felogin
- <!--###USERNAME###--> for regular frontend rendering (pattern can be defined individually using TypoScript setting config.USERNAME_substToken) |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GHSA-2rcw-9hrm-8q7q
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gpv4-4tpd-tbaa |
|
| 35 |
| url |
VCID-h7cg-64er-uya9 |
| vulnerability_id |
VCID-h7cg-64er-uya9 |
| summary |
Unrestricted Upload of File with Dangerous Type
Unrestricted File Upload vulnerability in the `fileDenyPattern` in `sysext/core/Classes/Core/SystemEnvironmentBuilder`. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
CVE-2017-14251, GHSA-fh4q-hxrw-cjqq
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h7cg-64er-uya9 |
|
| 36 |
| url |
VCID-hknp-f88a-kqec |
| vulnerability_id |
VCID-hknp-f88a-kqec |
| summary |
Privilege Escalation & SQL Injection in TYPO3 CMS
Failing to properly dissociate system related configuration from user generated configuration, the Form Framework (system extension "form") is vulnerable to SQL injection and Privilege Escalation. Basically instructions can be persisted to a form definition file that were not configured to be modified - this applies to definitions managed using the form editor module as well as direct file upload using the regular file list module. A valid backend user account as well as having system extension form activated are needed in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GHSA-7qwg-fcpw-xg5g
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hknp-f88a-kqec |
|
| 37 |
| url |
VCID-hp99-ncuh-6ugv |
| vulnerability_id |
VCID-hp99-ncuh-6ugv |
| summary |
Cross-site Scripting
Cross-Site Scripting in Frontend User Login. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-99
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hp99-ncuh-6ugv |
|
| 38 |
| url |
VCID-hsw8-nbs6-auaa |
| vulnerability_id |
VCID-hsw8-nbs6-auaa |
| summary |
Insertion of Sensitive Information into Log File in typo3/cms-core
> ### Meta
> * CVSS: `CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:F/RL:O/RC:C` (4.9)
### Problem
It has been discovered that system internal credentials or keys (e.g. database credentials) have been logged as plaintext in exception handlers, when logging the complete exception stack trace.
### Solution
Update to TYPO3 versions 7.6.57 ELTS, 8.7.47 ELTS, 9.5.35 ELTS, 10.4.29, 11.5.11 that fix the problem described above.
### Credits
Thanks to Marco Huber who reported this issue and to TYPO3 security member Torben Hansen who fixed the issue.
### References
* [TYPO3-CORE-SA-2022-002](https://typo3.org/security/advisory/typo3-core-sa-2022-002) |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@11.5.11 |
| purl |
pkg:composer/typo3/cms@11.5.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 2 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 3 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 4 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 5 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 6 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 7 |
| vulnerability |
VCID-prdv-mrtk-gkdc |
|
| 8 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 9 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 10 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 11 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 12 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.11 |
|
|
| aliases |
CVE-2022-31047, GHSA-fh99-4pgr-8j99
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hsw8-nbs6-auaa |
|
| 39 |
| url |
VCID-hyx9-8ae6-sba8 |
| vulnerability_id |
VCID-hyx9-8ae6-sba8 |
| summary |
TYPO3 Denial of Service in Frontend Record Registration
TYPO3’s built-in record registration functionality (aka `basic shopping cart`) using recs URL parameters is vulnerable to denial of service. Failing to properly ensure that anonymous user sessions are valid, attackers can use this vulnerability in order to create an arbitrary amount of individual session-data records in the database. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
|
| aliases |
GHSA-g585-crjf-vhwq
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hyx9-8ae6-sba8 |
|
| 40 |
| url |
VCID-j8hk-bqnb-gycp |
| vulnerability_id |
VCID-j8hk-bqnb-gycp |
| summary |
Cross-site Scripting
TYPO3 contains a cross-site scripting vulnerability. When error messages are not properly encoded, the components `_QueryGenerator_` and `_QueryView_` are vulnerable to both reflected and persistent cross-site scripting. A valid backend user account having administrator privileges is needed to exploit this vulnerability. TYPO3 contain a patch for this issue. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@10.4.18 |
| purl |
pkg:composer/typo3/cms@10.4.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 10 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 11 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 12 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 15 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 16 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 17 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.18 |
|
| 2 |
| url |
pkg:composer/typo3/cms@11.3.1 |
| purl |
pkg:composer/typo3/cms@11.3.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-b9sw-6tzm-3yhj |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 16 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 17 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 18 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 19 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.1 |
|
|
| aliases |
CVE-2021-32668, GHSA-6mh3-j5r5-2379
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j8hk-bqnb-gycp |
|
| 41 |
| url |
VCID-j8sh-5evd-dkaz |
| vulnerability_id |
VCID-j8sh-5evd-dkaz |
| summary |
Arbitrary Code Execution in TYPO3 CMS
Due to a missing file extension in the fileDenyPattern, backend user are allowed to upload *.pht files which can be executed in certain web server setups. The new default fileDenyPattern is the following, which might have been overridden in the TYPO3 Install Tool.
```
\.(php[3-7]?|phpsh|phtml|pht)(\..*)?$|^\.htaccess$
``` |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
GHSA-67wg-6j7r-mqh8
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j8sh-5evd-dkaz |
|
| 42 |
| url |
VCID-je4q-svfw-hqda |
| vulnerability_id |
VCID-je4q-svfw-hqda |
| summary |
Insecure Deserialization in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-96
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-je4q-svfw-hqda |
|
| 43 |
| url |
VCID-jp1p-rfxa-hyd9 |
| vulnerability_id |
VCID-jp1p-rfxa-hyd9 |
| summary |
Cross-site Scripting
Content elements of type `_menu_` are vulnerable to cross-site scripting when their referenced items get previewed in the page module. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.4.14 |
| purl |
pkg:composer/typo3/cms@10.4.14 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 12 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 13 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 14 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 15 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 16 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 17 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 18 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 19 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 20 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 21 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.14 |
|
| 3 |
| url |
pkg:composer/typo3/cms@11.1.1 |
| purl |
pkg:composer/typo3/cms@11.1.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 18 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 21 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.1.1 |
|
|
| aliases |
CVE-2021-21370, GHSA-x7hc-x7fm-f7qh
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jp1p-rfxa-hyd9 |
|
| 44 |
| url |
VCID-jq5y-7h9g-mufa |
| vulnerability_id |
VCID-jq5y-7h9g-mufa |
| summary |
Information Disclosure in Install Tool. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-101
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jq5y-7h9g-mufa |
|
| 45 |
| url |
VCID-jqe4-8hzb-mfea |
| vulnerability_id |
VCID-jqe4-8hzb-mfea |
| summary |
Arbitrary Code Execution
Due to a missing file extension in the `fileDenyPattern`, backend user are allowed to upload *.pht files which can be executed in certain web server setups. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-007
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jqe4-8hzb-mfea |
|
| 46 |
| url |
VCID-jwb1-3sbg-kfa5 |
| vulnerability_id |
VCID-jwb1-3sbg-kfa5 |
| summary |
TYPO3 Denial of Service in Online Media Asset Handling
Online Media Asset Handling (*`.youtube` and *`.vimeo` files) in the TYPO3 backend is vulnerable to denial of service. Putting large files with according file extensions results in high consumption of system resources. This can lead to exceeding limits of the current PHP process which results in a dysfunctional backend component. A valid backend user account or write access on the server system (e.g. SFTP) is needed in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GHSA-f3wf-q4fj-3gxf
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| url |
VCID-k5t3-28es-h3ez |
| vulnerability_id |
VCID-k5t3-28es-h3ez |
| summary |
Improper Input Validation
TYPO3 allows remote code execution because it does not properly configure the applications used for image processing, as demonstrated by `ImageMagick` or `GraphicsMagick`. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 23 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 24 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 27 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 28 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 29 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 30 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 31 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 32 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 33 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 20 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 21 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 25 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 26 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 32 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 33 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 34 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 35 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 36 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 37 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 40 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 41 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 42 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
CVE-2019-11832, GHSA-3w4h-r27h-4r2w
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-k5t3-28es-h3ez |
|
| 48 |
| url |
VCID-khpm-e1xb-hydb |
| vulnerability_id |
VCID-khpm-e1xb-hydb |
| summary |
Information Disclosure of Installed Extensions. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-172
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-khpm-e1xb-hydb |
|
| 49 |
| url |
VCID-mctp-nf36-7qdn |
| vulnerability_id |
VCID-mctp-nf36-7qdn |
| summary |
Information Disclosure
Failing to properly check user permission on file storages, editors could gain knowledge of protected storages and its folders as well as using them in a file collection being rendered in the frontend. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-005
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mctp-nf36-7qdn |
|
| 50 |
| url |
VCID-njsj-bwjq-fyap |
| vulnerability_id |
VCID-njsj-bwjq-fyap |
| summary |
Insecure Deserialization & Arbitrary Code Execution in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-94
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-njsj-bwjq-fyap |
|
| 51 |
| url |
VCID-nney-azbc-pucg |
| vulnerability_id |
VCID-nney-azbc-pucg |
| summary |
Information Disclosure in Backend User Interface. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-185
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nney-azbc-pucg |
|
| 52 |
| url |
VCID-p576-w7dd-p3h7 |
| vulnerability_id |
VCID-p576-w7dd-p3h7 |
| summary |
TYPO3 Security Misconfiguration in Install Tool Cookie
It has been discovered that cookies created in the Install Tool are not hardened to be submitted only via HTTP. In combination with other vulnerabilities such as cross-site scripting it can lead to hijacking an active and valid session in the Install Tool. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GHSA-f777-f784-36gm
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p576-w7dd-p3h7 |
|
| 53 |
| url |
VCID-p7gd-anw2-1qbz |
| vulnerability_id |
VCID-p7gd-anw2-1qbz |
| summary |
Deserialization of Untrusted Data
It has been discovered that the classes `QueryGenerator` and `QueryView` are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension `ext:lowlevel` (Backend Module `DB Check`) installed, with a valid backend user who has administrator privileges. The other exploitable scenario requires having the system extension `ext:sys_action` installed, with a valid backend user who has limited privileges. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.30 |
| purl |
pkg:composer/typo3/cms@8.7.30 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 9 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 12 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 15 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 6 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 17 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 21 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 22 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 23 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 24 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 25 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 26 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.1 |
| purl |
pkg:composer/typo3/cms@10.2.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 7 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 8 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 9 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 10 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 13 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 20 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 21 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 22 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 23 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 24 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 25 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 26 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 32 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 33 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 34 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 35 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 36 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 37 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 38 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 39 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 40 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1 |
|
| 3 |
| url |
pkg:composer/typo3/cms@10.2.2 |
| purl |
pkg:composer/typo3/cms@10.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 7 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 8 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 9 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 10 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 13 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 20 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 21 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 22 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 23 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 24 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 25 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 26 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 32 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 33 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 34 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 35 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 36 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 37 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 38 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 39 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 40 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2 |
|
|
| aliases |
CVE-2019-19849, GHSA-rcgc-4xfc-564v
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p7gd-anw2-1qbz |
|
| 54 |
| url |
VCID-pmvp-twk2-jqe4 |
| vulnerability_id |
VCID-pmvp-twk2-jqe4 |
| summary |
Security Misconfiguration for Backend User Accounts. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-173
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pmvp-twk2-jqe4 |
|
| 55 |
| url |
VCID-q2ym-y2rz-1bdn |
| vulnerability_id |
VCID-q2ym-y2rz-1bdn |
| summary |
Cross-Site Scripting in TYPO3 CMS Backend
Failing to properly encode user input, backend forms are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
GHSA-v4qr-8h2v-qpjx
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q2ym-y2rz-1bdn |
|
| 56 |
| url |
VCID-q52p-xfj8-gygd |
| vulnerability_id |
VCID-q52p-xfj8-gygd |
| summary |
Cross-site Scripting
XSS in TYPO3 CMS Backend. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-5u2f-5zzf-j3e4 |
|
| 11 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 18 |
| vulnerability |
VCID-9726-hafj-wkay |
|
| 19 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 20 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 21 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 22 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 23 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 24 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 25 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 26 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 27 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 28 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 29 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 30 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 35 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 36 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 37 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 38 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 39 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 40 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 41 |
| vulnerability |
VCID-j8sh-5evd-dkaz |
|
| 42 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 43 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 44 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 45 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 50 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 51 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 52 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 53 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 54 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 55 |
| vulnerability |
VCID-q2ym-y2rz-1bdn |
|
| 56 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 57 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 58 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 59 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 60 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 61 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 62 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 63 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 64 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 65 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 66 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 67 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 68 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 69 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 70 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 71 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 72 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 73 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 74 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 75 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 76 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 77 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 78 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 79 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 80 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 81 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 82 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 83 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 84 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 85 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-350
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q52p-xfj8-gygd |
|
| 57 |
| url |
VCID-q7vt-19eb-sqeq |
| vulnerability_id |
VCID-q7vt-19eb-sqeq |
| summary |
Typo3 Information Disclosure in Backend User Interface
The element information component used to display properties of a certain record is susceptible to information disclosure. The list of references from or to the record is not properly checked for the backend user’s permissions. A valid backend user account is needed in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GHSA-q9c4-9v5m-597p
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q7vt-19eb-sqeq |
|
| 58 |
| url |
VCID-qcnh-z4zh-myaw |
| vulnerability_id |
VCID-qcnh-z4zh-myaw |
| summary |
Insecure Deserialization & Arbitrary Code Execution in TYPO3 CMS
Phar files (formerly known as "PHP archives") can act als self extracting archives which leads to the fact that source code is executed when Phar files are invoked. The Phar file format is not limited to be stored with a dedicated file extension - "bundle.phar" would be valid as well as "bundle.txt" would be. This way, Phar files can be obfuscated as image or text file which would not be denied from being uploaded and persisted to a TYPO3 installation. Due to a missing sanitization of user input, those Phar files can be invoked by manipulated URLs in TYPO3 backend forms. A valid backend user account is needed to exploit this vulnerability. In theory the attack vector would be possible in the TYPO3 frontend as well, however no functional exploit has been identified so far. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GHSA-ppgf-8745-8pgx
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qcnh-z4zh-myaw |
|
| 59 |
| url |
VCID-qdxh-arxx-wbcr |
| vulnerability_id |
VCID-qdxh-arxx-wbcr |
| summary |
TYPO3 Cross-Site Scripting in Filelist Module
It has been discovered that the output table listing in the “Files” backend module is vulnerable to cross-site scripting when a file extension contains malicious sequences.
Access to the file system of the server - either directly or through synchronization - is required to exploit the vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.30 |
| purl |
pkg:composer/typo3/cms@8.7.30 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 9 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 12 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 15 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 6 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 17 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 21 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 22 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 23 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 24 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 25 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 26 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.1 |
| purl |
pkg:composer/typo3/cms@10.2.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 7 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 8 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 9 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 10 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 13 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 20 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 21 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 22 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 23 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 24 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 25 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 26 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 32 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 33 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 34 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 35 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 36 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 37 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 38 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 39 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 40 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1 |
|
|
| aliases |
GHSA-g7hw-jh4p-75wr
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qdxh-arxx-wbcr |
|
| 60 |
| url |
VCID-qv14-m93d-jyd9 |
| vulnerability_id |
VCID-qv14-m93d-jyd9 |
| summary |
Cross-site Scripting
TYPO3 allows XSS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
CVE-2019-12748, GHSA-r6fv-56gp-j3r4
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qv14-m93d-jyd9 |
|
| 61 |
| url |
VCID-qxab-9uwr-yqhv |
| vulnerability_id |
VCID-qxab-9uwr-yqhv |
| summary |
Cross-site Scripting
CKEditor allows user-assisted XSS involving a source-mode paste. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
CVE-2018-17960, GHSA-g68x-vvqq-pvw3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qxab-9uwr-yqhv |
|
| 62 |
| url |
VCID-rqrw-t2kj-mud8 |
| vulnerability_id |
VCID-rqrw-t2kj-mud8 |
| summary |
SQL Injection
Because escaping of user-submitted content is mishandled, the class QueryGenerator is vulnerable to SQL injection. Exploitation requires having the system extension `ext:lowlevel` installed, and a valid backend user who has administrator privileges. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.30 |
| purl |
pkg:composer/typo3/cms@8.7.30 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 9 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 12 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 15 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 6 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 17 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 21 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 22 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 23 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 24 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 25 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 26 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.2 |
| purl |
pkg:composer/typo3/cms@10.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 7 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 8 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 9 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 10 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 13 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 20 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 21 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 22 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 23 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 24 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 25 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 26 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 32 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 33 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 34 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 35 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 36 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 37 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 38 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 39 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 40 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2 |
|
|
| aliases |
CVE-2019-19850, GHSA-59pj-7mjh-4465
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rqrw-t2kj-mud8 |
|
| 63 |
| url |
VCID-ru6w-m6q6-27gn |
| vulnerability_id |
VCID-ru6w-m6q6-27gn |
| summary |
Cross-site Scripting
Cross-Site Scripting in Fluid Engine. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 23 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 24 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 27 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 28 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 29 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 30 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 31 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 32 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 33 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 20 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 21 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 25 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 26 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 32 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 33 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 34 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 35 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 36 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 37 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 40 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 41 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 42 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
GMS-2019-180
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ru6w-m6q6-27gn |
|
| 64 |
| url |
VCID-sdjb-gp4t-vbgt |
| vulnerability_id |
VCID-sdjb-gp4t-vbgt |
| summary |
Cross-site Scripting
TYPO3 is an open source PHP based web content management system. have a cross-site scripting vulnerability. When settings for _backend layouts_ are not properly encoded, the corresponding grid view is vulnerable to persistent cross-site scripting. A valid backend user account is needed to exploit this vulnerability. TYPO3 contain a patch for this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@10.4.18 |
| purl |
pkg:composer/typo3/cms@10.4.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 10 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 11 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 12 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 15 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 16 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 17 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.18 |
|
| 2 |
| url |
pkg:composer/typo3/cms@11.3.1 |
| purl |
pkg:composer/typo3/cms@11.3.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-b9sw-6tzm-3yhj |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 16 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 17 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 18 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 19 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.1 |
|
|
| aliases |
CVE-2021-32669, GHSA-rgcg-28xm-8mmw
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sdjb-gp4t-vbgt |
|
| 65 |
| url |
VCID-sdsa-mh76-kqch |
| vulnerability_id |
VCID-sdsa-mh76-kqch |
| summary |
Security Misconfiguration in User Session Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 23 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 24 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 27 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 28 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 29 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 30 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 31 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 32 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 33 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 20 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 21 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 25 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 26 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 32 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 33 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 34 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 35 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 36 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 37 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 40 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 41 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 42 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
GMS-2019-181
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sdsa-mh76-kqch |
|
| 66 |
| url |
VCID-sy7r-d6pv-yba9 |
| vulnerability_id |
VCID-sy7r-d6pv-yba9 |
| summary |
Code Injection
Arbitrary Code Execution in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-5u2f-5zzf-j3e4 |
|
| 11 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 18 |
| vulnerability |
VCID-9726-hafj-wkay |
|
| 19 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 20 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 21 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 22 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 23 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 24 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 25 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 26 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 27 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 28 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 29 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 30 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 35 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 36 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 37 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 38 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 39 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 40 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 41 |
| vulnerability |
VCID-j8sh-5evd-dkaz |
|
| 42 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 43 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 44 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 45 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 50 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 51 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 52 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 53 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 54 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 55 |
| vulnerability |
VCID-q2ym-y2rz-1bdn |
|
| 56 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 57 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 58 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 59 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 60 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 61 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 62 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 63 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 64 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 65 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 66 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 67 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 68 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 69 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 70 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 71 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 72 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 73 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 74 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 75 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 76 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 77 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 78 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 79 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 80 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 81 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 82 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 83 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 84 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 85 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-353
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sy7r-d6pv-yba9 |
|
| 67 |
| url |
VCID-teby-zvvw-zkhv |
| vulnerability_id |
VCID-teby-zvvw-zkhv |
| summary |
TYPO3 Cross-Site Scripting in Backend Modal Component
Failing to properly encode user input, notifications shown in modal windows in the TYPO3 backend are vulnerable to cross-site scripting. A valid backend user account is needed in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GHSA-7q33-hxwj-7p8v
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-teby-zvvw-zkhv |
|
| 68 |
| url |
VCID-tzpj-j3x1-ekgk |
| vulnerability_id |
VCID-tzpj-j3x1-ekgk |
| summary |
TYPO3 CMS vulnerable to User Enumeration via Response Timing
> ### Meta
> * CVSS: `CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:F/RL:O/RC:C` (4.9)
### Problem
It has been discovered that observing response time during user authentication (backend and frontend) can be used to distinguish between existing and non-existing user accounts.
Extension authors of 3rd party TYPO3 extensions providing a custom authentication service should check if the extension is affected by the described problem. Affected extensions must implement new `MimicServiceInterface::mimicAuthUser`, which simulates corresponding times regular processing would usually take.
### Solution
Update to TYPO3 version 7.6.58 ELTS, 8.7.48 ELTS, 9.5.37 ELTS, 10.4.32 or 11.5.16 that fix the problem described above.
### Credits
Thanks to Vautia who reported this issue and to TYPO3 core & security team members Oliver Hader who fixed the issue.
### References
* [TYPO3-CORE-SA-2022-007](https://typo3.org/security/advisory/typo3-core-sa-2022-007)
* [Vulnerability Report on huntr.dev](https://huntr.dev/bounties/7d519735-2877-4fad-bd77-accde3e290a7/) (embargoed +30 days) |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2022-36105, GHSA-m392-235j-9r7r
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tzpj-j3x1-ekgk |
|
| 69 |
| url |
VCID-u259-2sxq-tbct |
| vulnerability_id |
VCID-u259-2sxq-tbct |
| summary |
Cross-site Scripting
Cross-Site Scripting in Fluid `ViewHelpers`. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-175
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u259-2sxq-tbct |
|
| 70 |
| url |
VCID-u6as-cwxc-pkhk |
| vulnerability_id |
VCID-u6as-cwxc-pkhk |
| summary |
TYPO3 Security Misconfiguration for Backend User Accounts
When using the TYPO3 backend in order to create new backend user accounts, database records containing insecure or empty credentials might be persisted. When the type of user account is changed - which might be entity type or the admin flag for backend users - the backend form is reloaded in order to reflect changed configuration possibilities. However, this leads to persisting the current state as well, which can result into some of the following:
- account contains empty login credentials (username and/or password)
- account is incomplete and contains weak credentials (username and/or password)
Albeit the functionality provided by the TYPO3 core cannot be used either with empty usernames or empty passwords, it still can be a severe vulnerability to custom authentication service implementations.
This weakness cannot be directly exploited and requires interaction on purpose by some backend user having according privileges. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GHSA-c5mj-39cf-3pp5
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u6as-cwxc-pkhk |
|
| 71 |
| url |
VCID-uq77-aax5-k7d8 |
| vulnerability_id |
VCID-uq77-aax5-k7d8 |
| summary |
Inclusion of Sensitive Information in Log Files
TYPO3 is an open source PHP based web content management system. User credentials may been logged as plain-text. This occurs when explicitly using log level debug, which is not the default configuration. TYPO3 contain a patch for this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@10.4.18 |
| purl |
pkg:composer/typo3/cms@10.4.18 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 10 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 11 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 12 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 15 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 16 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 17 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.4.18 |
|
| 2 |
| url |
pkg:composer/typo3/cms@11.3.1 |
| purl |
pkg:composer/typo3/cms@11.3.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 7 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 8 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 9 |
| vulnerability |
VCID-b9sw-6tzm-3yhj |
|
| 10 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 11 |
| vulnerability |
VCID-fsx8-7qjz-2ubw |
|
| 12 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 13 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 14 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 15 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 16 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 17 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 18 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 19 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.3.1 |
|
|
| aliases |
CVE-2021-32767, GHSA-34fr-fhqr-7235
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uq77-aax5-k7d8 |
|
| 72 |
| url |
VCID-vq15-t92r-5bhx |
| vulnerability_id |
VCID-vq15-t92r-5bhx |
| summary |
Cross-site Scripting
The page module in TYPO3 is vulnerable to XSS via `$GLOBALS['TYPO3_CONF_VARS']['SYS']['sitename']`, as demonstrated by an admin entering a crafted site name during the installation process. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.11 |
| purl |
pkg:composer/typo3/cms@8.7.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 64 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 65 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 66 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 67 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 68 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 69 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 70 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 71 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 72 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 73 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 74 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 75 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.11 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.1.0 |
| purl |
pkg:composer/typo3/cms@9.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 16 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 17 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 18 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 19 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 20 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 21 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 22 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 23 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 24 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 25 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 26 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 27 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 28 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 29 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 30 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 31 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 32 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 33 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 34 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 35 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 36 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 37 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 38 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 39 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 40 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 41 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 42 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 43 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 44 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 45 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 46 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 47 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 48 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 49 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 50 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 51 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 52 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 53 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 54 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 55 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 56 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 57 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 58 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 59 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 60 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 61 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 62 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 63 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 64 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 65 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 66 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 67 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 68 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 69 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 70 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 71 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 72 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 73 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 74 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 75 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 76 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 77 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 78 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 79 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 80 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 81 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 82 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 83 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 84 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 85 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 86 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 87 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 88 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 89 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 90 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 91 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.1.0 |
|
| 2 |
| url |
pkg:composer/typo3/cms@9.2.0 |
| purl |
pkg:composer/typo3/cms@9.2.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 16 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 17 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 18 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 19 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 20 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 21 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 22 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 23 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 24 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 25 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 26 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 27 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 28 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 29 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 30 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 31 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 32 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 33 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 34 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 35 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 36 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 37 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 38 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 39 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 40 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 41 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 42 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 43 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 44 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 45 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 46 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 47 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 48 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 49 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 50 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 51 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 52 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 53 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 54 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 55 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 56 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 57 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 58 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 59 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 60 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 61 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 62 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 63 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 64 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 65 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 66 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 67 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 68 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 69 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 70 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 71 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 72 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 73 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 74 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 75 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 76 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 77 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 78 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 79 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 80 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 81 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 82 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 83 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 84 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 85 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 86 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 87 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 88 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 89 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 90 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 91 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.2.0 |
|
|
| aliases |
CVE-2018-6905, GHSA-3w22-wrwx-2r75
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vq15-t92r-5bhx |
|
| 73 |
| url |
VCID-vw2r-g8yy-eyf4 |
| vulnerability_id |
VCID-vw2r-g8yy-eyf4 |
| summary |
Code Injection
Arbitrary Code Execution via File List Module. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-178
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vw2r-g8yy-eyf4 |
|
| 74 |
| url |
VCID-w1wb-mq2y-dfca |
| vulnerability_id |
VCID-w1wb-mq2y-dfca |
| summary |
Privilege Escalation & SQL Injection in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 14 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 15 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 16 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 17 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 18 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 19 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 20 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 25 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 26 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 27 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 28 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 29 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 32 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 33 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 34 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 35 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 36 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 37 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 38 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 39 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 40 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 41 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 42 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 43 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 44 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 45 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 46 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 47 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 48 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 49 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 50 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 56 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 57 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 58 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 59 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 60 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 67 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 28 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 29 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 30 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 31 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 32 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 33 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 34 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 35 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 36 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 37 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 38 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 39 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 40 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 41 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 42 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 43 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 44 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 45 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 50 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 51 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 52 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 53 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 54 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 55 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 56 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 57 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 58 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 59 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 60 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 61 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 62 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 63 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 64 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 65 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 66 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 67 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 68 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 69 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 70 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 71 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 72 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 73 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 74 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 75 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 76 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 77 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 78 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 79 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 80 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 81 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 82 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 83 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-95
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w1wb-mq2y-dfca |
|
| 75 |
| url |
VCID-w483-prq4-rycx |
| vulnerability_id |
VCID-w483-prq4-rycx |
| summary |
TYPO3 Broken Access Control in Localization Handling
It has been discovered that backend users having limited access to specific languages are capable of modifying and creating pages in the default language which actually should be disallowed. A valid backend user account is needed in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
|
| aliases |
GHSA-772m-43f3-hmf8
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w483-prq4-rycx |
|
| 76 |
| url |
VCID-wat8-4m83-hken |
| vulnerability_id |
VCID-wat8-4m83-hken |
| summary |
TYPO3 Cross-Site Scripting in Link Handling
It has been discovered that `t3://` URL handling and typolink functionality are vulnerable to cross-site scripting. Not only regular backend forms are affected but also frontend extensions which use the rendering with typolink. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.30 |
| purl |
pkg:composer/typo3/cms@8.7.30 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 9 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 12 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 15 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 6 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 17 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 21 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 22 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 23 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 24 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 25 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 26 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.1 |
| purl |
pkg:composer/typo3/cms@10.2.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 7 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 8 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 9 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 10 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 13 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 20 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 21 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 22 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 23 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 24 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 25 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 26 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 32 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 33 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 34 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 35 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 36 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 37 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 38 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 39 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 40 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1 |
|
|
| aliases |
GHSA-xgmx-j3hv-jh9x
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wat8-4m83-hken |
|
| 77 |
| url |
VCID-wy45-2gmr-fkfg |
| vulnerability_id |
VCID-wy45-2gmr-fkfg |
| summary |
XSS Vulnerability
Failing to properly encode user input, backend forms are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 11 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 12 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 13 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 16 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 17 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 18 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 19 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 20 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 21 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 22 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 23 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 27 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 28 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 29 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 30 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 31 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 32 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 33 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 36 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 37 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 38 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 39 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 40 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 41 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 42 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 43 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 44 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 45 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 46 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 47 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 48 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 49 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 50 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 51 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 52 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 53 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 54 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 55 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 56 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 57 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 58 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 59 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 60 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 61 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 62 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 63 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 64 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 65 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 66 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 67 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 68 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 69 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 70 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 71 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 72 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 73 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 74 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 75 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 76 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-004
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wy45-2gmr-fkfg |
|
| 78 |
| url |
VCID-x5x1-w7yv-eye9 |
| vulnerability_id |
VCID-x5x1-w7yv-eye9 |
| summary |
Code Injection
Possible Arbitrary Code Execution in Image Processing. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 23 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 24 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 27 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 28 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 29 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 30 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 31 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 32 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 33 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 13 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 20 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 21 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 24 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 25 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 26 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 32 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 33 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 34 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 35 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 36 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 37 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 40 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 41 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 42 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
GMS-2019-182
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x5x1-w7yv-eye9 |
|
| 79 |
| url |
VCID-xvyu-2hb8-8ufh |
| vulnerability_id |
VCID-xvyu-2hb8-8ufh |
| summary |
TYPO3 Information Disclosure in Install Tool
The Install Tool exposes the current TYPO3 version number to non-authenticated users. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GHSA-6487-3qvg-8px9
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xvyu-2hb8-8ufh |
|
| 80 |
| url |
VCID-xw1s-93bu-wuh9 |
| vulnerability_id |
VCID-xw1s-93bu-wuh9 |
| summary |
Path Traversal
It has been discovered that the extraction of manually uploaded ZIP archives in Extension Manager is vulnerable to directory traversal. Admin privileges are required in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.30 |
| purl |
pkg:composer/typo3/cms@8.7.30 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 9 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 12 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 13 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 14 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 15 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.30 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 6 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 17 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 21 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 22 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 23 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 24 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 25 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 26 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.2 |
| purl |
pkg:composer/typo3/cms@10.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-13up-fwbr-17am |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 7 |
| vulnerability |
VCID-36cz-khgc-6fft |
|
| 8 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 9 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 10 |
| vulnerability |
VCID-6hnx-p9hv-jbg2 |
|
| 11 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 12 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 13 |
| vulnerability |
VCID-6xgm-uan4-u7fu |
|
| 14 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 15 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 16 |
| vulnerability |
VCID-9c49-n1a2-pubu |
|
| 17 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 18 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 19 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 20 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 21 |
| vulnerability |
VCID-e4zc-fmh2-n7b8 |
|
| 22 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 23 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 24 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 25 |
| vulnerability |
VCID-fyyr-48a7-8qch |
|
| 26 |
| vulnerability |
VCID-gbev-1zs8-8bac |
|
| 27 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 28 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 29 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 30 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 31 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 32 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 33 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 34 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 35 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 36 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 37 |
| vulnerability |
VCID-x8qf-w4vq-mfhm |
|
| 38 |
| vulnerability |
VCID-x8tq-5na6-gfbj |
|
| 39 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 40 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2 |
|
|
| aliases |
CVE-2019-19848, GHSA-77p4-wfr8-977w
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xw1s-93bu-wuh9 |
|
| 81 |
| url |
VCID-y7ds-p5r2-yuhq |
| vulnerability_id |
VCID-y7ds-p5r2-yuhq |
| summary |
Security Misconfiguration in Frontend Session Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.27 |
| purl |
pkg:composer/typo3/cms@8.7.27 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 3 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 4 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 5 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 11 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 12 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 15 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 16 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 19 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 20 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 21 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 22 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.27 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 2 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 7 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 8 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 15 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 25 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 26 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 27 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 28 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 29 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 30 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 32 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-187
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-y7ds-p5r2-yuhq |
|
| 82 |
| url |
VCID-ygw4-jdqu-4fbt |
| vulnerability_id |
VCID-ygw4-jdqu-4fbt |
| summary |
Information Disclosure in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 8 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 9 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 10 |
| vulnerability |
VCID-5u2f-5zzf-j3e4 |
|
| 11 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 16 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 17 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 18 |
| vulnerability |
VCID-9726-hafj-wkay |
|
| 19 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 20 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 21 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 22 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 23 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 24 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 25 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 26 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 27 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 28 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 29 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 30 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 35 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 36 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 37 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 38 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 39 |
| vulnerability |
VCID-hyx9-8ae6-sba8 |
|
| 40 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 41 |
| vulnerability |
VCID-j8sh-5evd-dkaz |
|
| 42 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 43 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 44 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 45 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 46 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 47 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 48 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 49 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 50 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 51 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 52 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 53 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 54 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 55 |
| vulnerability |
VCID-q2ym-y2rz-1bdn |
|
| 56 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 57 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 58 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 59 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 60 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 61 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 62 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 63 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 64 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 65 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 66 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 67 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 68 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 69 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 70 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 71 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 72 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 73 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 74 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 75 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 76 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 77 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 78 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 79 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 80 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 81 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 82 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 83 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 84 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 85 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-352
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ygw4-jdqu-4fbt |
|
| 83 |
| url |
VCID-yh6b-tc4u-v3bk |
| vulnerability_id |
VCID-yh6b-tc4u-v3bk |
| summary |
TYPO3 Arbitrary Code Execution via File List Module
Due to missing file extensions in $GLOBALS['TYPO3_CONF_VARS']['BE'][‘fileDenyPattern’], backend users are allowed to upload *.phar, *.shtml, *.pl or *.cgi files which can be executed in certain web server setups. A valid backend user account is needed in order to exploit this vulnerability.
Derivatives of Debian GNU Linux are handling *.phar files as PHP applications since PHP 7.1 (for unofficial packages) and PHP 7.2 (for official packages).
The file extension *.shtml is bound to server side includes which are not enabled per default in most common Linux based distributions. File extension *.pl and *.cgi require additional handlers to be configured which is also not the case in most common distributions (except for /cgi-bin/ location). |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GHSA-8h4m-r4wm-xj7r
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yh6b-tc4u-v3bk |
|
| 84 |
| url |
VCID-yz6t-ge1y-qfgr |
| vulnerability_id |
VCID-yz6t-ge1y-qfgr |
| summary |
Security Misconfiguration in Install Tool Cookie. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 13 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 14 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 15 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 18 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 19 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 20 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 21 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 22 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 23 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 27 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 28 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 29 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 30 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 33 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 34 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 40 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 41 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 42 |
| vulnerability |
VCID-w483-prq4-rycx |
|
| 43 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 44 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 45 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 46 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 47 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 48 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 49 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 50 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 12 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 13 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 14 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 15 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 16 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 17 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 18 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 19 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 20 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 21 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 22 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 23 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 24 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 25 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 26 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 27 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 28 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 29 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 30 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 31 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 32 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 33 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 34 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 35 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 36 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 37 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 38 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 39 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 40 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 41 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 42 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 43 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 44 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 45 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 46 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 47 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 48 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 49 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 50 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 51 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 52 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 53 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 54 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 55 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 56 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 57 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 58 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 59 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 60 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 61 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 62 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 63 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 64 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 65 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 66 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 67 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 68 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-100
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yz6t-ge1y-qfgr |
|
| 85 |
| url |
VCID-zgfw-pk39-gyg8 |
| vulnerability_id |
VCID-zgfw-pk39-gyg8 |
| summary |
TYPO3 Cross-Site Scripting in Fluid ViewHelpers
Failing to properly encode user input, templates using built-in Fluid ViewHelpers are vulnerable to cross-site scripting. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GHSA-85ch-44w7-rf32
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zgfw-pk39-gyg8 |
|
| 86 |
| url |
VCID-zmwv-gwq3-fkej |
| vulnerability_id |
VCID-zmwv-gwq3-fkej |
| summary |
Cross-site Scripting
Cross-Site Scripting in Form Framework. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 4 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 5 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 6 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 7 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 8 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 11 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 14 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 18 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 22 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 23 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 24 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 25 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 26 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 27 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 28 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 32 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 33 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 34 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 35 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 36 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 37 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 5 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 6 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 7 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 8 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 9 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 10 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 11 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 12 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 13 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 14 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 15 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 16 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 17 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 18 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 19 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 20 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 21 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 22 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 23 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 24 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 25 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 26 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 27 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 28 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 29 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 30 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 31 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 32 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 33 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 34 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 35 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 36 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 37 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 38 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 39 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 40 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 41 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 42 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 43 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 44 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 45 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 46 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 47 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 48 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 49 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 50 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 51 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 52 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 53 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 54 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 55 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-177
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zmwv-gwq3-fkej |
|
| 87 |
| url |
VCID-zybp-mb3d-jyee |
| vulnerability_id |
VCID-zybp-mb3d-jyee |
| summary |
TYPO3 CMS vulnerable to Weak Authentication in Frontend Login
### Problem
Restricting frontend login to specific users, organized in different storage folders (partitions), can be bypassed. A potential attacker might use this ambiguity in usernames to get access to a different account - however, credentials must be known to the adversary.
### Solution
Update to TYPO3 versions 8.7.49 ELTS, 9.5.38 ELTS, 10.4.33, 11.5.20, 12.1.1 that fix the problem described above.
### References
* [TYPO3-CORE-SA-2022-013](https://typo3.org/security/advisory/typo3-core-sa-2022-013) |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2022-23501, GHSA-jfp7-79g7-89rf, GMS-2022-8134
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zybp-mb3d-jyee |
|