Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/typo3/cms@7.0.0-alpha
Typecomposer
Namespacetypo3
Namecms
Version7.0.0-alpha
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version10.4.35
Latest_non_vulnerable_version12.2.0
Affected_by_vulnerabilities
0
url VCID-h958-d3pm-kfcs
vulnerability_id VCID-h958-d3pm-kfcs
summary 
Missing Access Check
Extbase request handling fails to implement a proper access check for requested controller/ action combinations, which makes it possible for an attacker to execute arbitrary Extbase actions by crafting a special request. To successfully exploit this vulnerability, an attacker must have access to at least one Extbase plugin or module action in a TYPO3 installation. The missing access check inevitably leads to information disclosure or remote code execution, depending on the action that an attacker is able to execute.
references
0
reference_url https://github.com/TYPO3/TYPO3.CMS/commit/21ed4054212babb7ec75d80a24f95c6ba25bd2fb
reference_id
reference_type
scores
url https://github.com/TYPO3/TYPO3.CMS/commit/21ed4054212babb7ec75d80a24f95c6ba25bd2fb
1
reference_url https://github.com/TYPO3/TYPO3.CMS/commit/404f09d491c96b294ded5e2741277dfbeba92807
reference_id
reference_type
scores
url https://github.com/TYPO3/TYPO3.CMS/commit/404f09d491c96b294ded5e2741277dfbeba92807
2
reference_url https://github.com/TYPO3/TYPO3.CMS/commit/c10db60dfc87c33542c418fa316754a5309c3e26
reference_id
reference_type
scores
url https://github.com/TYPO3/TYPO3.CMS/commit/c10db60dfc87c33542c418fa316754a5309c3e26
3
reference_url https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms/
reference_id
reference_type
scores
url https://typo3.org/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/missing-access-check-in-typo3-cms/
fixed_packages
0
url pkg:composer/typo3/cms@7.6.8
purl pkg:composer/typo3/cms@7.6.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1jcy-nx8g-z3d3
1
vulnerability VCID-1qjx-grvf-y7bk
2
vulnerability VCID-25t3-1sm6-3kdn
3
vulnerability VCID-28bf-jvah-zkhw
4
vulnerability VCID-2fs8-bscc-3ye2
5
vulnerability VCID-435j-f3yx-9yep
6
vulnerability VCID-47px-4d98-ubab
7
vulnerability VCID-5jgb-dsyx-hyb4
8
vulnerability VCID-5paq-5frf-43ed
9
vulnerability VCID-5ppt-avmb-cqb2
10
vulnerability VCID-6b5q-vzs3-pkcc
11
vulnerability VCID-6wsa-4ywc-8fh4
12
vulnerability VCID-7d1g-j3k5-gub8
13
vulnerability VCID-8jp8-a363-67be
14
vulnerability VCID-bajy-qbwq-fufn
15
vulnerability VCID-bck9-34jp-6ydx
16
vulnerability VCID-bmj2-4k58-tqa4
17
vulnerability VCID-bnne-7p2q-eqd2
18
vulnerability VCID-bxjw-7426-gyb8
19
vulnerability VCID-c6zq-cfg5-u7d9
20
vulnerability VCID-dbrh-t8zx-nkd9
21
vulnerability VCID-dm97-51uu-r7gw
22
vulnerability VCID-dsu7-jjjq-f3e1
23
vulnerability VCID-ehzg-bzrd-kbcc
24
vulnerability VCID-ep6t-zwd1-4bb3
25
vulnerability VCID-f963-qur3-2qb7
26
vulnerability VCID-fy3g-uegw-2bew
27
vulnerability VCID-gcnj-6qb6-pbgz
28
vulnerability VCID-h2dd-7b1r-k7bs
29
vulnerability VCID-h63t-9enx-qfdn
30
vulnerability VCID-hpgq-deze-p7dp
31
vulnerability VCID-hv3n-j8ck-1ufx
32
vulnerability VCID-jmu3-5k7e-x7ch
33
vulnerability VCID-jqth-wfgx-87cx
34
vulnerability VCID-jqx9-41zx-dbcy
35
vulnerability VCID-m3nf-1qbv-d3dj
36
vulnerability VCID-mnz3-rj21-67ad
37
vulnerability VCID-mqbh-k9n3-nbed
38
vulnerability VCID-mqk6-z77g-bfdv
39
vulnerability VCID-mub5-s7h1-57cy
40
vulnerability VCID-n15v-ta9h-6ffb
41
vulnerability VCID-n61z-6v8a-hygf
42
vulnerability VCID-n78p-x7hh-gqcf
43
vulnerability VCID-nnh9-udcj-m7fv
44
vulnerability VCID-nt6a-5zkv-pbcm
45
vulnerability VCID-nwxj-3ajk-rkh5
46
vulnerability VCID-p545-vwe6-9kfr
47
vulnerability VCID-pk8d-8u15-5bfq
48
vulnerability VCID-pnfa-cksc-43de
49
vulnerability VCID-prbd-r82t-87dm
50
vulnerability VCID-q9ak-qcq6-qfhy
51
vulnerability VCID-rdrs-mhaw-b3ge
52
vulnerability VCID-rkms-w15c-4yb1
53
vulnerability VCID-rzw5-8d1u-sfam
54
vulnerability VCID-sr3p-pdxy-4yhu
55
vulnerability VCID-t3jn-vwbx-u7cr
56
vulnerability VCID-tmrt-6fxw-5ugh
57
vulnerability VCID-tw1y-t4qj-j3d1
58
vulnerability VCID-uckg-j48d-efad
59
vulnerability VCID-utpu-q2dv-m3hm
60
vulnerability VCID-vndb-w8e1-4ugv
61
vulnerability VCID-vrt1-aj9v-2kb6
62
vulnerability VCID-wge3-kxdq-f3bz
63
vulnerability VCID-wr5t-xqnn-gkcj
64
vulnerability VCID-wxps-mnue-6bbh
65
vulnerability VCID-xa4m-xpa9-v7h8
66
vulnerability VCID-xqew-bx7v-1qfk
67
vulnerability VCID-y32z-2d3f-gkgw
68
vulnerability VCID-zdq2-dhb2-6kaq
69
vulnerability VCID-zspb-bd6j-wyd2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.6.8
1
url pkg:composer/typo3/cms@8.1.1
purl pkg:composer/typo3/cms@8.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18dg-eevv-3ug9
1
vulnerability VCID-1jcy-nx8g-z3d3
2
vulnerability VCID-1kae-ffj3-xyc7
3
vulnerability VCID-1qjx-grvf-y7bk
4
vulnerability VCID-25t3-1sm6-3kdn
5
vulnerability VCID-28bf-jvah-zkhw
6
vulnerability VCID-2fs8-bscc-3ye2
7
vulnerability VCID-2meq-x4kd-bbdn
8
vulnerability VCID-3gg5-1921-rbfs
9
vulnerability VCID-3n2r-awja-dug9
10
vulnerability VCID-3v4n-fzxa-bfaw
11
vulnerability VCID-435j-f3yx-9yep
12
vulnerability VCID-47px-4d98-ubab
13
vulnerability VCID-4ack-haf2-cfbe
14
vulnerability VCID-4btk-jt5n-2ugf
15
vulnerability VCID-551q-gpyd-ffe8
16
vulnerability VCID-5jgb-dsyx-hyb4
17
vulnerability VCID-5paq-5frf-43ed
18
vulnerability VCID-5ppt-avmb-cqb2
19
vulnerability VCID-5qfv-y43v-akdm
20
vulnerability VCID-5yg8-2cbr-d3as
21
vulnerability VCID-6487-15z5-pkd4
22
vulnerability VCID-6b5q-vzs3-pkcc
23
vulnerability VCID-6wsa-4ywc-8fh4
24
vulnerability VCID-7d1g-j3k5-gub8
25
vulnerability VCID-8jp8-a363-67be
26
vulnerability VCID-9g62-zd1x-3bdg
27
vulnerability VCID-9gpp-ez8w-rqav
28
vulnerability VCID-auw7-pc55-73hj
29
vulnerability VCID-axaf-45kr-kbfe
30
vulnerability VCID-bajy-qbwq-fufn
31
vulnerability VCID-bck9-34jp-6ydx
32
vulnerability VCID-bmj2-4k58-tqa4
33
vulnerability VCID-bnne-7p2q-eqd2
34
vulnerability VCID-bxjw-7426-gyb8
35
vulnerability VCID-c2tm-eqmm-1ugt
36
vulnerability VCID-c6zq-cfg5-u7d9
37
vulnerability VCID-cm14-t8uv-k3es
38
vulnerability VCID-cmka-8484-27bu
39
vulnerability VCID-dbrh-t8zx-nkd9
40
vulnerability VCID-dj88-f3p8-cfbn
41
vulnerability VCID-dm97-51uu-r7gw
42
vulnerability VCID-dquc-7amf-e7cs
43
vulnerability VCID-dsu7-jjjq-f3e1
44
vulnerability VCID-e72u-tpc3-23g3
45
vulnerability VCID-e7sv-4xc2-m3d5
46
vulnerability VCID-eajg-ctpd-2bby
47
vulnerability VCID-ehzg-bzrd-kbcc
48
vulnerability VCID-ekfd-wp8z-d7e1
49
vulnerability VCID-ep6t-zwd1-4bb3
50
vulnerability VCID-euk5-hagy-xqfz
51
vulnerability VCID-fy3g-uegw-2bew
52
vulnerability VCID-gcnj-6qb6-pbgz
53
vulnerability VCID-h63t-9enx-qfdn
54
vulnerability VCID-he5m-6wj4-rbhc
55
vulnerability VCID-hpgq-deze-p7dp
56
vulnerability VCID-hv3n-j8ck-1ufx
57
vulnerability VCID-j77k-hjgx-5kc5
58
vulnerability VCID-jmu3-5k7e-x7ch
59
vulnerability VCID-jppe-cbgm-k3cz
60
vulnerability VCID-jqth-wfgx-87cx
61
vulnerability VCID-jqx9-41zx-dbcy
62
vulnerability VCID-k4h1-mvnf-1ybx
63
vulnerability VCID-k8af-cg9k-87a9
64
vulnerability VCID-m3nf-1qbv-d3dj
65
vulnerability VCID-m7w6-b2xu-6uee
66
vulnerability VCID-mnz3-rj21-67ad
67
vulnerability VCID-mqbh-k9n3-nbed
68
vulnerability VCID-mqk6-z77g-bfdv
69
vulnerability VCID-mub5-s7h1-57cy
70
vulnerability VCID-n15v-ta9h-6ffb
71
vulnerability VCID-n61z-6v8a-hygf
72
vulnerability VCID-n78p-x7hh-gqcf
73
vulnerability VCID-nnh9-udcj-m7fv
74
vulnerability VCID-nt6a-5zkv-pbcm
75
vulnerability VCID-nwxj-3ajk-rkh5
76
vulnerability VCID-p545-vwe6-9kfr
77
vulnerability VCID-pk8d-8u15-5bfq
78
vulnerability VCID-pnfa-cksc-43de
79
vulnerability VCID-prbd-r82t-87dm
80
vulnerability VCID-px44-19tj-h7aa
81
vulnerability VCID-q8hy-wjd9-nbgp
82
vulnerability VCID-q9ak-qcq6-qfhy
83
vulnerability VCID-qb4j-9tz7-m7a2
84
vulnerability VCID-rdrs-mhaw-b3ge
85
vulnerability VCID-rzw5-8d1u-sfam
86
vulnerability VCID-s64f-x81f-b7ce
87
vulnerability VCID-shqd-udhm-pff8
88
vulnerability VCID-sr3p-pdxy-4yhu
89
vulnerability VCID-stzu-sxe6-5yf5
90
vulnerability VCID-t1n7-eswt-73gw
91
vulnerability VCID-t3jn-vwbx-u7cr
92
vulnerability VCID-tmrt-6fxw-5ugh
93
vulnerability VCID-tqf5-2fsm-8fch
94
vulnerability VCID-tw1y-t4qj-j3d1
95
vulnerability VCID-uckg-j48d-efad
96
vulnerability VCID-utpu-q2dv-m3hm
97
vulnerability VCID-vndb-w8e1-4ugv
98
vulnerability VCID-vrt1-aj9v-2kb6
99
vulnerability VCID-vxj6-wvyz-zbaq
100
vulnerability VCID-vxry-uvph-kbfd
101
vulnerability VCID-vybh-pxr3-17hn
102
vulnerability VCID-wea9-egep-h7g5
103
vulnerability VCID-wge3-kxdq-f3bz
104
vulnerability VCID-wr5t-xqnn-gkcj
105
vulnerability VCID-wxps-mnue-6bbh
106
vulnerability VCID-xa4m-xpa9-v7h8
107
vulnerability VCID-xh7y-56vy-5ud8
108
vulnerability VCID-xqew-bx7v-1qfk
109
vulnerability VCID-y32z-2d3f-gkgw
110
vulnerability VCID-zawz-vky5-tkgt
111
vulnerability VCID-zdq2-dhb2-6kaq
112
vulnerability VCID-zspb-bd6j-wyd2
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@8.1.1
aliases TYPO3-CORE-SA-2016-013
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h958-d3pm-kfcs
Fixing_vulnerabilities
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.0-alpha