| 0 |
| url |
VCID-1ffs-9vj5-27hk |
| vulnerability_id |
VCID-1ffs-9vj5-27hk |
| summary |
Path Traversal
Due to improper input validation, attackers can by-pass restrictions of predefined options and submit arbitrary data in the Form Designer backend module of the Form Framework. In the default configuration of the Form Framework this allows attackers to explicitly allow arbitrary mime-types for file uploads - however, default `_fileDenyPattern_` successfully blocked files like `_.htaccess_` or `_malicious.php_`. Besides that, attackers can persist those files in any writable directory of the corresponding TYPO3 installation. A valid backend user account with access to the form module is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2021-21357, GHSA-3vg7-jw9m-pc3f
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1ffs-9vj5-27hk |
|
| 1 |
| url |
VCID-3ugj-6m1e-e3hr |
| vulnerability_id |
VCID-3ugj-6m1e-e3hr |
| summary |
Cross-site Scripting
Cross-Site Scripting in Online Media Asset Rendering. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-97
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3ugj-6m1e-e3hr |
|
| 2 |
| url |
VCID-4eym-e6vt-8fbs |
| vulnerability_id |
VCID-4eym-e6vt-8fbs |
| summary |
Code Injection
Arbitrary Code Execution and Cross-Site Scripting in Backend API. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 12 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 13 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 14 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 15 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 16 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-188
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4eym-e6vt-8fbs |
|
| 3 |
| url |
VCID-66ru-n2df-b3ay |
| vulnerability_id |
VCID-66ru-n2df-b3ay |
| summary |
Cross-site Scripting
XSS in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.6.1 |
| purl |
pkg:composer/typo3/cms@8.6.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-9saf-w56y-pugz |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-q52p-xfj8-gygd |
|
| 32 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 33 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 34 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 35 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 36 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 37 |
| vulnerability |
VCID-sy7r-d6pv-yba9 |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 42 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 43 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 44 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 45 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 46 |
| vulnerability |
VCID-ygw4-jdqu-4fbt |
|
| 47 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 48 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.6.1 |
|
|
| aliases |
GMS-2017-349
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-66ru-n2df-b3ay |
|
| 4 |
| url |
VCID-7ch1-q9f4-a7bt |
| vulnerability_id |
VCID-7ch1-q9f4-a7bt |
| summary |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
In Bootstrap, XSS is possible in the data-target property of scrollspy. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 6 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 7 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 25 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 26 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 27 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 28 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 29 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 30 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
CVE-2018-14041, GHSA-pj7m-g53m-7638
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7ch1-q9f4-a7bt |
|
| 5 |
| url |
VCID-7m6u-k5tp-gkhy |
| vulnerability_id |
VCID-7m6u-k5tp-gkhy |
| summary |
Insecure Deserialization in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 12 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 13 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 14 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 15 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 16 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-189
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7m6u-k5tp-gkhy |
|
| 6 |
| url |
VCID-848u-w88s-5bbe |
| vulnerability_id |
VCID-848u-w88s-5bbe |
| summary |
Unrestricted Upload of File with Dangerous Type
Due to the lack of ensuring file extensions belong to configured allowed mime-types, attackers can upload arbitrary data with arbitrary file extensions - however, default `_fileDenyPattern_` successfully blocked files like `_.htaccess_` or `_malicious.php_`. Additionally, `_UploadedFileReferenceConverter_` transforming uploaded files into proper FileReference domain model objects handles possible file uploads for other extensions as well - given those extensions use the Extbase MVC framework, make use of FileReference items in their direct or inherited domain model definitions and did not implement their own type converter. In case this scenario applies, `_UploadedFileReferenceConverter_` accepts any file mime-type and persists files in the default location. In any way, uploaded files are placed in the default location `_/fileadmin/user_upload/_`, in most scenarios keeping the submitted filename - which allows attackers to directly reference files, or even correctly guess filenames used by other individuals, disclosing this information. No authentication is required to exploit this vulnerability. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2021-21355, GHSA-2r6j-862c-m2v2
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-848u-w88s-5bbe |
|
| 7 |
| url |
VCID-953t-q1cr-zyd6 |
| vulnerability_id |
VCID-953t-q1cr-zyd6 |
| summary |
Cross-site Scripting
Cross-Site Scripting in Backend Modal Component. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-98
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-953t-q1cr-zyd6 |
|
| 8 |
| url |
VCID-9saf-w56y-pugz |
| vulnerability_id |
VCID-9saf-w56y-pugz |
| summary |
Information Disclosure in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 4 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 33 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 34 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 38 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 39 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 40 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 41 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 42 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 46 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-351
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9saf-w56y-pugz |
|
| 9 |
| url |
VCID-abjx-8v46-d7d8 |
| vulnerability_id |
VCID-abjx-8v46-d7d8 |
| summary |
Improper Authentication
Authentication Bypass in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 8 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 9 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 10 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 11 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 12 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 15 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 23 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 24 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 27 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 28 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 29 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 30 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 31 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 32 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 33 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 34 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 35 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 3 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 4 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 5 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 6 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 11 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 12 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 13 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 14 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 15 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 16 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 17 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 18 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 19 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 20 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 21 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 22 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 23 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 24 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 25 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 26 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 27 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 28 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 29 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 30 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 31 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 32 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 33 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 34 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 35 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 36 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 37 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 42 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 43 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 44 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-93
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-abjx-8v46-d7d8 |
|
| 10 |
| url |
VCID-am6s-67bm-77dr |
| vulnerability_id |
VCID-am6s-67bm-77dr |
| summary |
Cross-site Scripting
Cross-Site Scripting in Bootstrap CSS toolkit. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 6 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 7 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 25 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 26 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 27 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 28 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 29 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 30 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-176
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-am6s-67bm-77dr |
|
| 11 |
| url |
VCID-bn3p-39sv-6fdg |
| vulnerability_id |
VCID-bn3p-39sv-6fdg |
| summary |
Improper Access Control
Broken Access Control in Localization Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.0.0 |
| purl |
pkg:composer/typo3/cms@9.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 28 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 29 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 30 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 31 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 32 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 33 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 34 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 35 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 36 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 37 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 38 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 39 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 40 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 41 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 42 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 43 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 44 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 45 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 46 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 47 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 48 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 49 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 50 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 51 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 52 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 53 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 54 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 55 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 56 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 57 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 58 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 59 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 60 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 61 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 62 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 63 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 64 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 65 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 66 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 67 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 68 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 69 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 70 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 71 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 72 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 73 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 74 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 75 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 76 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 77 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 78 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 79 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 80 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 81 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 82 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 83 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 84 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 85 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 86 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 87 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 88 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 89 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 90 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 91 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.0.0 |
|
|
| aliases |
GMS-2019-174
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bn3p-39sv-6fdg |
|
| 12 |
| url |
VCID-d6c2-upx1-e7cd |
| vulnerability_id |
VCID-d6c2-upx1-e7cd |
| summary |
Authentication Bypass
Due to late TCA initialization the authentication service fails to restrict frontend user according to the validation rules. Therefore it is possible to authenticate restricted (e.g. disabled) frontend users. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.6.1 |
| purl |
pkg:composer/typo3/cms@8.6.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-9saf-w56y-pugz |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-q52p-xfj8-gygd |
|
| 32 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 33 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 34 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 35 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 36 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 37 |
| vulnerability |
VCID-sy7r-d6pv-yba9 |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 42 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 43 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 44 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 45 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 46 |
| vulnerability |
VCID-ygw4-jdqu-4fbt |
|
| 47 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 48 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.6.1 |
|
|
| aliases |
TYPO3-CORE-SA-2017-002
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-d6c2-upx1-e7cd |
|
| 13 |
| url |
VCID-dsqm-9q3e-dudw |
| vulnerability_id |
VCID-dsqm-9q3e-dudw |
| summary |
Uncontrolled Resource Consumption
Denial of Service in Online Media Asset Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-102
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dsqm-9q3e-dudw |
|
| 14 |
| url |
VCID-e564-zdku-9fc6 |
| vulnerability_id |
VCID-e564-zdku-9fc6 |
| summary |
Information Disclosure
HTTP requests being performed using the TYPO3 API expose the specific TYPO3 version to the called endpoint. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 8 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 9 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 10 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 11 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 17 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 28 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 29 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 30 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 31 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 32 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 33 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 34 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 35 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 36 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 37 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 38 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 39 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 40 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-006
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e564-zdku-9fc6 |
|
| 15 |
| url |
VCID-emqq-kwjg-3kfk |
| vulnerability_id |
VCID-emqq-kwjg-3kfk |
| summary |
Cross-site Scripting
Cross-Site Scripting in CKEditor. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-104
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-emqq-kwjg-3kfk |
|
| 16 |
| url |
VCID-ev4k-5k1d-2bhu |
| vulnerability_id |
VCID-ev4k-5k1d-2bhu |
| summary |
URL Redirection to Untrusted Site (Open Redirect)
Login Handling is susceptible to open redirection which allows attackers redirecting to arbitrary content, and conducting phishing attacks. No authentication is required in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2021-21338, GHSA-4jhw-2p6j-5wmp
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ev4k-5k1d-2bhu |
|
| 17 |
| url |
VCID-fdnw-2tz5-4fdr |
| vulnerability_id |
VCID-fdnw-2tz5-4fdr |
| summary |
Uncontrolled Resource Consumption
Denial of Service in Frontend Record Registration. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.0.0 |
| purl |
pkg:composer/typo3/cms@9.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-11sw-6x9k-vued |
|
| 1 |
| vulnerability |
VCID-11u3-8xzy-jfhh |
|
| 2 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 3 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 4 |
| vulnerability |
VCID-28fn-ncj5-2ufk |
|
| 5 |
| vulnerability |
VCID-2rhr-8vaz-hqfj |
|
| 6 |
| vulnerability |
VCID-2rmv-a83x-9ka8 |
|
| 7 |
| vulnerability |
VCID-39vn-73mc-jqav |
|
| 8 |
| vulnerability |
VCID-3k2k-a3gb-n3ba |
|
| 9 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 10 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 11 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 12 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 13 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 14 |
| vulnerability |
VCID-5k47-9k7t-rqak |
|
| 15 |
| vulnerability |
VCID-66kh-c1dm-8fbf |
|
| 16 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 17 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 18 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 19 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 20 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 21 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 22 |
| vulnerability |
VCID-94r9-hh4g-jkej |
|
| 23 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 24 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 25 |
| vulnerability |
VCID-9yu1-z7c2-t3fj |
|
| 26 |
| vulnerability |
VCID-a1g9-pyz5-9fca |
|
| 27 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 28 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 29 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 30 |
| vulnerability |
VCID-buj5-2t53-3kcr |
|
| 31 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 32 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 33 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 34 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 35 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 36 |
| vulnerability |
VCID-f319-jpf5-hyex |
|
| 37 |
| vulnerability |
VCID-f4n7-q72x-3yea |
|
| 38 |
| vulnerability |
VCID-fpa2-ffg1-fyaa |
|
| 39 |
| vulnerability |
VCID-fqkc-utex-3kav |
|
| 40 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 41 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 42 |
| vulnerability |
VCID-gpv4-4tpd-tbaa |
|
| 43 |
| vulnerability |
VCID-hknp-f88a-kqec |
|
| 44 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 45 |
| vulnerability |
VCID-hsw8-nbs6-auaa |
|
| 46 |
| vulnerability |
VCID-j8hk-bqnb-gycp |
|
| 47 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 48 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 49 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 50 |
| vulnerability |
VCID-jwb1-3sbg-kfa5 |
|
| 51 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 52 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 53 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 54 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 55 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 56 |
| vulnerability |
VCID-p576-w7dd-p3h7 |
|
| 57 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 58 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 59 |
| vulnerability |
VCID-q2t1-kx56-s3c3 |
|
| 60 |
| vulnerability |
VCID-q7vt-19eb-sqeq |
|
| 61 |
| vulnerability |
VCID-qcnh-z4zh-myaw |
|
| 62 |
| vulnerability |
VCID-qdxh-arxx-wbcr |
|
| 63 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 64 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 65 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 66 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 67 |
| vulnerability |
VCID-sdjb-gp4t-vbgt |
|
| 68 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 69 |
| vulnerability |
VCID-teby-zvvw-zkhv |
|
| 70 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 71 |
| vulnerability |
VCID-tzpj-j3x1-ekgk |
|
| 72 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 73 |
| vulnerability |
VCID-u6as-cwxc-pkhk |
|
| 74 |
| vulnerability |
VCID-un7r-8sah-33cr |
|
| 75 |
| vulnerability |
VCID-uq77-aax5-k7d8 |
|
| 76 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 77 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 78 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 79 |
| vulnerability |
VCID-w7z1-aw31-vugx |
|
| 80 |
| vulnerability |
VCID-wat8-4m83-hken |
|
| 81 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 82 |
| vulnerability |
VCID-xvyu-2hb8-8ufh |
|
| 83 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 84 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 85 |
| vulnerability |
VCID-yh6b-tc4u-v3bk |
|
| 86 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 87 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 88 |
| vulnerability |
VCID-zgfw-pk39-gyg8 |
|
| 89 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 90 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
| 91 |
| vulnerability |
VCID-zybp-mb3d-jyee |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.0.0 |
|
|
| aliases |
GMS-2018-103
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fdnw-2tz5-4fdr |
|
| 18 |
| url |
VCID-fqkx-v8t5-q3h6 |
| vulnerability_id |
VCID-fqkx-v8t5-q3h6 |
| summary |
Cleartext Storage of Sensitive Information
User session identifiers are stored in cleartext - without processing of additional cryptographic hashing algorithms. This vulnerability cannot be exploited directly and occurs in combination with a chained attack - for example SQL injection in any other component of the system. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2021-21339, GHSA-qx3w-4864-94ch
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fqkx-v8t5-q3h6 |
|
| 19 |
| url |
VCID-fut7-bb1f-37g7 |
| vulnerability_id |
VCID-fut7-bb1f-37g7 |
| summary |
Cross-site Scripting
Cross-Site Scripting in Link Handling. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 12 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 13 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 14 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 15 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 16 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-186
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fut7-bb1f-37g7 |
|
| 20 |
| url |
VCID-h7cg-64er-uya9 |
| vulnerability_id |
VCID-h7cg-64er-uya9 |
| summary |
Unrestricted Upload of File with Dangerous Type
Unrestricted File Upload vulnerability in the `fileDenyPattern` in `sysext/core/Classes/Core/SystemEnvironmentBuilder`. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 8 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 9 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 10 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 11 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 17 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 28 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 29 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 30 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 31 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 32 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 33 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 34 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 35 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 36 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 37 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 38 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 39 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 40 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
CVE-2017-14251, GHSA-fh4q-hxrw-cjqq
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h7cg-64er-uya9 |
|
| 21 |
| url |
VCID-hg2n-xera-jkdh |
| vulnerability_id |
VCID-hg2n-xera-jkdh |
| summary |
Improper Authentication
Authentication Bypass in TYPO3 Frontend. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.6.1 |
| purl |
pkg:composer/typo3/cms@8.6.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-9saf-w56y-pugz |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-q52p-xfj8-gygd |
|
| 32 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 33 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 34 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 35 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 36 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 37 |
| vulnerability |
VCID-sy7r-d6pv-yba9 |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 42 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 43 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 44 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 45 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 46 |
| vulnerability |
VCID-ygw4-jdqu-4fbt |
|
| 47 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 48 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.6.1 |
|
|
| aliases |
GMS-2017-348
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hg2n-xera-jkdh |
|
| 22 |
| url |
VCID-hp99-ncuh-6ugv |
| vulnerability_id |
VCID-hp99-ncuh-6ugv |
| summary |
Cross-site Scripting
Cross-Site Scripting in Frontend User Login. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-99
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hp99-ncuh-6ugv |
|
| 23 |
| url |
VCID-je4q-svfw-hqda |
| vulnerability_id |
VCID-je4q-svfw-hqda |
| summary |
Insecure Deserialization in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 8 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 9 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 10 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 11 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 12 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 15 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 23 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 24 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 27 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 28 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 29 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 30 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 31 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 32 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 33 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 34 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 35 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 3 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 4 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 5 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 6 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 11 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 12 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 13 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 14 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 15 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 16 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 17 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 18 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 19 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 20 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 21 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 22 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 23 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 24 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 25 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 26 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 27 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 28 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 29 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 30 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 31 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 32 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 33 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 34 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 35 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 36 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 37 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 42 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 43 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 44 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-96
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-je4q-svfw-hqda |
|
| 24 |
| url |
VCID-jp1p-rfxa-hyd9 |
| vulnerability_id |
VCID-jp1p-rfxa-hyd9 |
| summary |
Cross-site Scripting
Content elements of type `_menu_` are vulnerable to cross-site scripting when their referenced items get previewed in the page module. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2021-21370, GHSA-x7hc-x7fm-f7qh
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jp1p-rfxa-hyd9 |
|
| 25 |
| url |
VCID-jq5y-7h9g-mufa |
| vulnerability_id |
VCID-jq5y-7h9g-mufa |
| summary |
Information Disclosure in Install Tool. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-101
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jq5y-7h9g-mufa |
|
| 26 |
| url |
VCID-jqe4-8hzb-mfea |
| vulnerability_id |
VCID-jqe4-8hzb-mfea |
| summary |
Arbitrary Code Execution
Due to a missing file extension in the `fileDenyPattern`, backend user are allowed to upload *.pht files which can be executed in certain web server setups. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 8 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 9 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 10 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 11 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 17 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 28 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 29 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 30 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 31 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 32 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 33 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 34 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 35 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 36 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 37 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 38 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 39 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 40 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-007
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jqe4-8hzb-mfea |
|
| 27 |
| url |
VCID-k5t3-28es-h3ez |
| vulnerability_id |
VCID-k5t3-28es-h3ez |
| summary |
Improper Input Validation
TYPO3 allows remote code execution because it does not properly configure the applications used for image processing, as demonstrated by `ImageMagick` or `GraphicsMagick`. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 5 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 6 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 7 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 8 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 14 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 15 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 7 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 8 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 9 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 10 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 11 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 12 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 18 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 19 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 20 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 21 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 22 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 26 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
CVE-2019-11832, GHSA-3w4h-r27h-4r2w
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-k5t3-28es-h3ez |
|
| 28 |
| url |
VCID-khpm-e1xb-hydb |
| vulnerability_id |
VCID-khpm-e1xb-hydb |
| summary |
Information Disclosure of Installed Extensions. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 6 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 7 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 25 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 26 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 27 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 28 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 29 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 30 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-172
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-khpm-e1xb-hydb |
|
| 29 |
| url |
VCID-mctp-nf36-7qdn |
| vulnerability_id |
VCID-mctp-nf36-7qdn |
| summary |
Information Disclosure
Failing to properly check user permission on file storages, editors could gain knowledge of protected storages and its folders as well as using them in a file collection being rendered in the frontend. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 8 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 9 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 10 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 11 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 17 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 28 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 29 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 30 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 31 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 32 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 33 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 34 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 35 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 36 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 37 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 38 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 39 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 40 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-005
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mctp-nf36-7qdn |
|
| 30 |
| url |
VCID-njsj-bwjq-fyap |
| vulnerability_id |
VCID-njsj-bwjq-fyap |
| summary |
Insecure Deserialization & Arbitrary Code Execution in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 8 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 9 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 10 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 11 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 12 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 15 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 23 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 24 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 27 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 28 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 29 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 30 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 31 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 32 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 33 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 34 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 35 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 3 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 4 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 5 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 6 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 11 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 12 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 13 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 14 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 15 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 16 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 17 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 18 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 19 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 20 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 21 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 22 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 23 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 24 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 25 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 26 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 27 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 28 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 29 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 30 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 31 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 32 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 33 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 34 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 35 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 36 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 37 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 42 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 43 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 44 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-94
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-njsj-bwjq-fyap |
|
| 31 |
| url |
VCID-nney-azbc-pucg |
| vulnerability_id |
VCID-nney-azbc-pucg |
| summary |
Information Disclosure in Backend User Interface. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 12 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 13 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 14 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 15 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 16 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-185
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nney-azbc-pucg |
|
| 32 |
| url |
VCID-p7gd-anw2-1qbz |
| vulnerability_id |
VCID-p7gd-anw2-1qbz |
| summary |
Deserialization of Untrusted Data
It has been discovered that the classes `QueryGenerator` and `QueryView` are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension `ext:lowlevel` (Backend Module `DB Check`) installed, with a valid backend user who has administrator privileges. The other exploitable scenario requires having the system extension `ext:sys_action` installed, with a valid backend user who has limited privileges. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 8 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 9 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 10 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 11 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 12 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 13 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 14 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.1 |
| purl |
pkg:composer/typo3/cms@10.2.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 8 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 9 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 10 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 11 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 15 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 16 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.1 |
|
| 3 |
| url |
pkg:composer/typo3/cms@10.2.2 |
| purl |
pkg:composer/typo3/cms@10.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 8 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 9 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 10 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 11 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 15 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 16 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2 |
|
|
| aliases |
CVE-2019-19849, GHSA-rcgc-4xfc-564v
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p7gd-anw2-1qbz |
|
| 33 |
| url |
VCID-pmvp-twk2-jqe4 |
| vulnerability_id |
VCID-pmvp-twk2-jqe4 |
| summary |
Security Misconfiguration for Backend User Accounts. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 6 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 7 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 25 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 26 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 27 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 28 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 29 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 30 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-173
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pmvp-twk2-jqe4 |
|
| 34 |
| url |
VCID-q52p-xfj8-gygd |
| vulnerability_id |
VCID-q52p-xfj8-gygd |
| summary |
Cross-site Scripting
XSS in TYPO3 CMS Backend. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 4 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 33 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 34 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 38 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 39 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 40 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 41 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 42 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 46 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-350
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q52p-xfj8-gygd |
|
| 35 |
| url |
VCID-qv14-m93d-jyd9 |
| vulnerability_id |
VCID-qv14-m93d-jyd9 |
| summary |
Cross-site Scripting
TYPO3 allows XSS. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 12 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 13 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 14 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 15 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 16 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
CVE-2019-12748, GHSA-r6fv-56gp-j3r4
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qv14-m93d-jyd9 |
|
| 36 |
| url |
VCID-qxab-9uwr-yqhv |
| vulnerability_id |
VCID-qxab-9uwr-yqhv |
| summary |
Cross-site Scripting
CKEditor allows user-assisted XSS involving a source-mode paste. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
CVE-2018-17960, GHSA-g68x-vvqq-pvw3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qxab-9uwr-yqhv |
|
| 37 |
| url |
VCID-rqrw-t2kj-mud8 |
| vulnerability_id |
VCID-rqrw-t2kj-mud8 |
| summary |
SQL Injection
Because escaping of user-submitted content is mishandled, the class QueryGenerator is vulnerable to SQL injection. Exploitation requires having the system extension `ext:lowlevel` installed, and a valid backend user who has administrator privileges. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 8 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 9 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 10 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 11 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 12 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 13 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 14 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.2 |
| purl |
pkg:composer/typo3/cms@10.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 8 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 9 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 10 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 11 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 15 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 16 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2 |
|
|
| aliases |
CVE-2019-19850, GHSA-59pj-7mjh-4465
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rqrw-t2kj-mud8 |
|
| 38 |
| url |
VCID-ru6w-m6q6-27gn |
| vulnerability_id |
VCID-ru6w-m6q6-27gn |
| summary |
Cross-site Scripting
Cross-Site Scripting in Fluid Engine. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 5 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 6 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 7 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 8 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 14 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 15 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 7 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 8 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 9 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 10 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 11 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 12 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 18 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 19 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 20 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 21 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 22 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 26 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
GMS-2019-180
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ru6w-m6q6-27gn |
|
| 39 |
| url |
VCID-sdsa-mh76-kqch |
| vulnerability_id |
VCID-sdsa-mh76-kqch |
| summary |
Security Misconfiguration in User Session Handling. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 5 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 6 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 7 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 8 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 14 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 15 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 7 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 8 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 9 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 10 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 11 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 12 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 18 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 19 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 20 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 21 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 22 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 26 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
GMS-2019-181
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sdsa-mh76-kqch |
|
| 40 |
| url |
VCID-sy7r-d6pv-yba9 |
| vulnerability_id |
VCID-sy7r-d6pv-yba9 |
| summary |
Code Injection
Arbitrary Code Execution in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 4 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 33 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 34 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 38 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 39 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 40 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 41 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 42 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 46 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-353
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sy7r-d6pv-yba9 |
|
| 41 |
| url |
VCID-u259-2sxq-tbct |
| vulnerability_id |
VCID-u259-2sxq-tbct |
| summary |
Cross-site Scripting
Cross-Site Scripting in Fluid `ViewHelpers`. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 6 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 7 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 25 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 26 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 27 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 28 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 29 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 30 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-175
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u259-2sxq-tbct |
|
| 42 |
| url |
VCID-vq15-t92r-5bhx |
| vulnerability_id |
VCID-vq15-t92r-5bhx |
| summary |
Cross-site Scripting
The page module in TYPO3 is vulnerable to XSS via `$GLOBALS['TYPO3_CONF_VARS']['SYS']['sitename']`, as demonstrated by an admin entering a crafted site name during the installation process. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.11 |
| purl |
pkg:composer/typo3/cms@8.7.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 8 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 9 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 10 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 11 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 17 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 28 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 29 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 30 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 31 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 32 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 33 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 34 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 35 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 36 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 37 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 38 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 39 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.11 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.1.0 |
| purl |
pkg:composer/typo3/cms@9.1.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 3 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 4 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 5 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 6 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 11 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 12 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 13 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 14 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 15 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 16 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 17 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 18 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 19 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 20 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 24 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 25 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 26 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 27 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 28 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 29 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 30 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 31 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 32 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 33 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 34 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 35 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 36 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 37 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 38 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 39 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 40 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 41 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 42 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 43 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 44 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 45 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 46 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 47 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 48 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 49 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 50 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 51 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.1.0 |
|
| 2 |
| url |
pkg:composer/typo3/cms@9.2.0 |
| purl |
pkg:composer/typo3/cms@9.2.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 3 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 4 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 5 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 6 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 11 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 12 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 13 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 14 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 15 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 16 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 17 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 18 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 19 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 20 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 21 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 22 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 23 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 24 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 25 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 26 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 27 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 28 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 29 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 30 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 31 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 32 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 33 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 34 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 35 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 36 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 37 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 38 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 39 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 40 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 41 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 42 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 43 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 44 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 45 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 46 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 47 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 48 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 49 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 50 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 51 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.2.0 |
|
|
| aliases |
CVE-2018-6905, GHSA-3w22-wrwx-2r75
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vq15-t92r-5bhx |
|
| 43 |
| url |
VCID-vw2r-g8yy-eyf4 |
| vulnerability_id |
VCID-vw2r-g8yy-eyf4 |
| summary |
Code Injection
Arbitrary Code Execution via File List Module. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 6 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 7 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 25 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 26 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 27 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 28 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 29 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 30 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-178
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vw2r-g8yy-eyf4 |
|
| 44 |
| url |
VCID-w1wb-mq2y-dfca |
| vulnerability_id |
VCID-w1wb-mq2y-dfca |
| summary |
Privilege Escalation & SQL Injection in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.17 |
| purl |
pkg:composer/typo3/cms@8.7.17 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 8 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 9 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 10 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 11 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 12 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 15 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 23 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 24 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 25 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 26 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 27 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 28 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 29 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 30 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 31 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 32 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 33 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 34 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 35 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.17 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.3.2 |
| purl |
pkg:composer/typo3/cms@9.3.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 3 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 4 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 5 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 6 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 7 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 8 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 9 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 10 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 11 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 12 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 13 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 14 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 15 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 16 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 17 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 18 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 19 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 20 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 21 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 22 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 23 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 24 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 25 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 26 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 27 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 28 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 29 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 30 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 31 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 32 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 33 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 34 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 35 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 36 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 37 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 38 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 39 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 42 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 43 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 44 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 45 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 46 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 47 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.3.2 |
|
|
| aliases |
GMS-2018-95
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w1wb-mq2y-dfca |
|
| 45 |
| url |
VCID-wy45-2gmr-fkfg |
| vulnerability_id |
VCID-wy45-2gmr-fkfg |
| summary |
XSS Vulnerability
Failing to properly encode user input, backend forms are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.5 |
| purl |
pkg:composer/typo3/cms@8.7.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 8 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 9 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 10 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 11 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 17 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 18 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 19 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 28 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 29 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 30 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 31 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 32 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 33 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 34 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 35 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 36 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 37 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 38 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 39 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 40 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.5 |
|
|
| aliases |
TYPO3-CORE-SA-2017-004
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wy45-2gmr-fkfg |
|
| 46 |
| url |
VCID-x5x1-w7yv-eye9 |
| vulnerability_id |
VCID-x5x1-w7yv-eye9 |
| summary |
Code Injection
Possible Arbitrary Code Execution in Image Processing. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.25 |
| purl |
pkg:composer/typo3/cms@8.7.25 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 5 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 6 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 7 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 8 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 14 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 15 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.25 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.6 |
| purl |
pkg:composer/typo3/cms@9.5.6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 7 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 8 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 9 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 10 |
| vulnerability |
VCID-cbmm-1b2k-8qaz |
|
| 11 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 12 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 13 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 14 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 15 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 16 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 17 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 18 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 19 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 20 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 21 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 22 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 26 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.6 |
|
|
| aliases |
GMS-2019-182
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x5x1-w7yv-eye9 |
|
| 47 |
| url |
VCID-xh68-defe-f7ce |
| vulnerability_id |
VCID-xh68-defe-f7ce |
| summary |
XSS Vulnerability
TYPO3 is vulnerable to Cross-Site Scripting. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.6.1 |
| purl |
pkg:composer/typo3/cms@8.6.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 4 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 5 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 6 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 7 |
| vulnerability |
VCID-9saf-w56y-pugz |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-q52p-xfj8-gygd |
|
| 32 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 33 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 34 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 35 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 36 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 37 |
| vulnerability |
VCID-sy7r-d6pv-yba9 |
|
| 38 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 39 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 40 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 41 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 42 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 43 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 44 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 45 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 46 |
| vulnerability |
VCID-ygw4-jdqu-4fbt |
|
| 47 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 48 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.6.1 |
|
|
| aliases |
TYPO3-CORE-SA-2017-003
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xh68-defe-f7ce |
|
| 48 |
| url |
VCID-xw1s-93bu-wuh9 |
| vulnerability_id |
VCID-xw1s-93bu-wuh9 |
| summary |
Path Traversal
It has been discovered that the extraction of manually uploaded ZIP archives in Extension Manager is vulnerable to directory traversal. Admin privileges are required in order to exploit this vulnerability. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.12 |
| purl |
pkg:composer/typo3/cms@9.5.12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 8 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 9 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 10 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 11 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 12 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 13 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 14 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.12 |
|
| 2 |
| url |
pkg:composer/typo3/cms@10.2.2 |
| purl |
pkg:composer/typo3/cms@10.2.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-2tz2-8qdm-2kcv |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 5 |
| vulnerability |
VCID-6urp-p9mn-cffv |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 8 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 9 |
| vulnerability |
VCID-bcbd-zzet-mff6 |
|
| 10 |
| vulnerability |
VCID-c46m-ht19-ybc4 |
|
| 11 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 12 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 13 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 14 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 15 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 16 |
| vulnerability |
VCID-r3az-g422-gqf9 |
|
| 17 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 18 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@10.2.2 |
|
|
| aliases |
CVE-2019-19848, GHSA-77p4-wfr8-977w
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xw1s-93bu-wuh9 |
|
| 49 |
| url |
VCID-y7ds-p5r2-yuhq |
| vulnerability_id |
VCID-y7ds-p5r2-yuhq |
| summary |
Security Misconfiguration in Frontend Session Handling. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.8 |
| purl |
pkg:composer/typo3/cms@9.5.8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 3 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 4 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 5 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 6 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 7 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 8 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 9 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 10 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 11 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 12 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 13 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 14 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 15 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 16 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.8 |
|
|
| aliases |
GMS-2019-187
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-y7ds-p5r2-yuhq |
|
| 50 |
| url |
VCID-ygw4-jdqu-4fbt |
| vulnerability_id |
VCID-ygw4-jdqu-4fbt |
| summary |
Information Disclosure in TYPO3 CMS. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.0 |
| purl |
pkg:composer/typo3/cms@8.7.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-3ugj-6m1e-e3hr |
|
| 2 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 3 |
| vulnerability |
VCID-6a22-c7x5-sqe2 |
|
| 4 |
| vulnerability |
VCID-7ch1-q9f4-a7bt |
|
| 5 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 6 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 7 |
| vulnerability |
VCID-953t-q1cr-zyd6 |
|
| 8 |
| vulnerability |
VCID-abjx-8v46-d7d8 |
|
| 9 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 10 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 11 |
| vulnerability |
VCID-dsqm-9q3e-dudw |
|
| 12 |
| vulnerability |
VCID-e564-zdku-9fc6 |
|
| 13 |
| vulnerability |
VCID-emqq-kwjg-3kfk |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fdnw-2tz5-4fdr |
|
| 16 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 17 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 18 |
| vulnerability |
VCID-h7cg-64er-uya9 |
|
| 19 |
| vulnerability |
VCID-hp99-ncuh-6ugv |
|
| 20 |
| vulnerability |
VCID-je4q-svfw-hqda |
|
| 21 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 22 |
| vulnerability |
VCID-jq5y-7h9g-mufa |
|
| 23 |
| vulnerability |
VCID-jqe4-8hzb-mfea |
|
| 24 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 25 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 26 |
| vulnerability |
VCID-mctp-nf36-7qdn |
|
| 27 |
| vulnerability |
VCID-njsj-bwjq-fyap |
|
| 28 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 29 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 30 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 31 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 32 |
| vulnerability |
VCID-qxab-9uwr-yqhv |
|
| 33 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 34 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 35 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 36 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 37 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 38 |
| vulnerability |
VCID-vq15-t92r-5bhx |
|
| 39 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 40 |
| vulnerability |
VCID-w1wb-mq2y-dfca |
|
| 41 |
| vulnerability |
VCID-wy45-2gmr-fkfg |
|
| 42 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 43 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 44 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 45 |
| vulnerability |
VCID-yz6t-ge1y-qfgr |
|
| 46 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.0 |
|
|
| aliases |
GMS-2017-352
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ygw4-jdqu-4fbt |
|
| 51 |
| url |
VCID-yz6t-ge1y-qfgr |
| vulnerability_id |
VCID-yz6t-ge1y-qfgr |
| summary |
Security Misconfiguration in Install Tool Cookie. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.21 |
| purl |
pkg:composer/typo3/cms@8.7.21 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 5 |
| vulnerability |
VCID-bn3p-39sv-6fdg |
|
| 6 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 7 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 8 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 9 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 10 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 11 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 12 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 13 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 14 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 15 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 16 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 17 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 18 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 19 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 20 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 21 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 22 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 23 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 24 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 25 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.21 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.2 |
| purl |
pkg:composer/typo3/cms@9.5.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-4jck-w9ct-budk |
|
| 6 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 7 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 8 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 9 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 10 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 11 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 12 |
| vulnerability |
VCID-am6s-67bm-77dr |
|
| 13 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 14 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 15 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 16 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 17 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 18 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 19 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 20 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 21 |
| vulnerability |
VCID-khpm-e1xb-hydb |
|
| 22 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 23 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 24 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 25 |
| vulnerability |
VCID-pmvp-twk2-jqe4 |
|
| 26 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 27 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 28 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 29 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 30 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 31 |
| vulnerability |
VCID-u259-2sxq-tbct |
|
| 32 |
| vulnerability |
VCID-vw2r-g8yy-eyf4 |
|
| 33 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 34 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 35 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 36 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 37 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
| 38 |
| vulnerability |
VCID-zmwv-gwq3-fkej |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.2 |
|
|
| aliases |
GMS-2018-100
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yz6t-ge1y-qfgr |
|
| 52 |
| url |
VCID-zmwv-gwq3-fkej |
| vulnerability_id |
VCID-zmwv-gwq3-fkej |
| summary |
Cross-site Scripting
Cross-Site Scripting in Form Framework. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/typo3/cms@8.7.23 |
| purl |
pkg:composer/typo3/cms@8.7.23 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 2 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 3 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 4 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 5 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 6 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 7 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 8 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 9 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 10 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 11 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 12 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 13 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 14 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 15 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 16 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 17 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 18 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.7.23 |
|
| 1 |
| url |
pkg:composer/typo3/cms@9.5.4 |
| purl |
pkg:composer/typo3/cms@9.5.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1ffs-9vj5-27hk |
|
| 1 |
| vulnerability |
VCID-1sfk-z8py-ykb8 |
|
| 2 |
| vulnerability |
VCID-3ye6-vqje-abh4 |
|
| 3 |
| vulnerability |
VCID-4an7-9ph4-mkd4 |
|
| 4 |
| vulnerability |
VCID-4eym-e6vt-8fbs |
|
| 5 |
| vulnerability |
VCID-6mnf-2fcw-dqgp |
|
| 6 |
| vulnerability |
VCID-7m6u-k5tp-gkhy |
|
| 7 |
| vulnerability |
VCID-7xv1-78u7-xufp |
|
| 8 |
| vulnerability |
VCID-848u-w88s-5bbe |
|
| 9 |
| vulnerability |
VCID-8w4e-d49b-nbg8 |
|
| 10 |
| vulnerability |
VCID-9adx-p876-kyb5 |
|
| 11 |
| vulnerability |
VCID-bbh5-rss8-bfct |
|
| 12 |
| vulnerability |
VCID-cvk2-93hm-gkhx |
|
| 13 |
| vulnerability |
VCID-e6zr-4bgg-kkh5 |
|
| 14 |
| vulnerability |
VCID-ev4k-5k1d-2bhu |
|
| 15 |
| vulnerability |
VCID-fqkx-v8t5-q3h6 |
|
| 16 |
| vulnerability |
VCID-fut7-bb1f-37g7 |
|
| 17 |
| vulnerability |
VCID-jp1p-rfxa-hyd9 |
|
| 18 |
| vulnerability |
VCID-k5t3-28es-h3ez |
|
| 19 |
| vulnerability |
VCID-n1gz-y615-cbbk |
|
| 20 |
| vulnerability |
VCID-nney-azbc-pucg |
|
| 21 |
| vulnerability |
VCID-p7gd-anw2-1qbz |
|
| 22 |
| vulnerability |
VCID-qv14-m93d-jyd9 |
|
| 23 |
| vulnerability |
VCID-rqrw-t2kj-mud8 |
|
| 24 |
| vulnerability |
VCID-ru6w-m6q6-27gn |
|
| 25 |
| vulnerability |
VCID-sdsa-mh76-kqch |
|
| 26 |
| vulnerability |
VCID-tgyt-axv1-c7ag |
|
| 27 |
| vulnerability |
VCID-x5x1-w7yv-eye9 |
|
| 28 |
| vulnerability |
VCID-xw1s-93bu-wuh9 |
|
| 29 |
| vulnerability |
VCID-y7ds-p5r2-yuhq |
|
| 30 |
| vulnerability |
VCID-zeut-9wfp-q7et |
|
| 31 |
| vulnerability |
VCID-zkvq-bms4-gfcv |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@9.5.4 |
|
|
| aliases |
GMS-2019-177
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zmwv-gwq3-fkej |
|