Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/54355?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/54355?format=api", "purl": "pkg:composer/typo3/cms@6.1.0", "type": "composer", "namespace": "typo3", "name": "cms", "version": "6.1.0", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "10.4.35", "latest_non_vulnerable_version": "12.2.0", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19111?format=api", "vulnerability_id": "VCID-59zz-tmvz-sqgm", "summary": "ExtJS JavaScript framework used in TYPO3 vulnerable to Cross-site Scripting\nFailing to properly validate the HTTP host-header TYPO3 CMS is susceptible to host spoofing. TYPO3 uses the HTTP host-header to generate absolute URLs in several places like 404 handling, http(s) enforcement, password reset links and many more. Since the host header itself is provided by the client it can be forged to any value, even in a name based virtual hosts environment. A blog post describes this problem in great detail.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-05-22-1.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-05-22-1.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/32efb1b03573d51391126c90cd87c74b3dc457fb", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/32efb1b03573d51391126c90cd87c74b3dc457fb" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/9bd777649e4022c89dbf39ca41988a594b5e94b8", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/9bd777649e4022c89dbf39ca41988a594b5e94b8" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/c39bca9613c311dd12e61771dd311b1bb2283b8d", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/c39bca9613c311dd12e61771dd311b1bb2283b8d" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/d554ac5323f3b0fac1fce4c2c491d0123badd669", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/d554ac5323f3b0fac1fce4c2c491d0123badd669" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001" }, { "reference_url": "https://web.archive.org/web/20140531042943/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20140531042943/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "https://github.com/advisories/GHSA-mxjf-hc9v-xgv2", "reference_id": "GHSA-mxjf-hc9v-xgv2", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-mxjf-hc9v-xgv2" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54359?format=api", "purl": "pkg:composer/typo3/cms@6.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "GHSA-mxjf-hc9v-xgv2" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-59zz-tmvz-sqgm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56684?format=api", "vulnerability_id": "VCID-635d-efe6-bbgm", "summary": "TYPO3 doesn't properly check file extensions\nThe (1) file upload component and (2) File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.8 and 6.1.x before 6.1.3 do not properly check file extensions, which allow remote authenticated editors to execute arbitrary PHP code by uploading a .php file.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4250", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.6022", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.6019", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60197", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60156", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60172", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60158", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60115", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60162", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60026", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60104", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60128", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60097", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60147", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60161", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60183", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60169", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00391", "scoring_system": "epss", "scoring_elements": "0.60151", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4250" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4250", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4250" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2013-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2013-002" }, { "reference_url": "https://github.com/advisories/GHSA-54jj-pxx2-pv8h", "reference_id": "GHSA-54jj-pxx2-pv8h", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-54jj-pxx2-pv8h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/83133?format=api", "purl": "pkg:composer/typo3/cms@6.1.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.3" } ], "aliases": [ "CVE-2013-4250", "GHSA-54jj-pxx2-pv8h" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-635d-efe6-bbgm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15673?format=api", "vulnerability_id": "VCID-9j2h-q1n5-kbgt", "summary": "Typo3 XSS Vulnerabilities\nMultiple cross-site scripting (XSS) vulnerabilities in unspecified backend components in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allow remote authenticated editors to inject arbitrary web script or HTML via unknown parameters.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.42942", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43205", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43195", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43128", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43062", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43064", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.42982", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.42847", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.42923", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43083", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43142", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43169", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43107", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.4316", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43173", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43194", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43161", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43146", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "https://web.archive.org/web/20200229060129/http://www.securityfocus.com/bid/67625", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20200229060129/http://www.securityfocus.com/bid/67625" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2942", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2942" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2014/06/03/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2014/06/03/2" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3943", "reference_id": "CVE-2014-3943", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3943" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3943.yaml", "reference_id": "CVE-2014-3943.YAML", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3943.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-qqh2-h6gw-6x8x", "reference_id": "GHSA-qqh2-h6gw-6x8x", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-qqh2-h6gw-6x8x" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54359?format=api", "purl": "pkg:composer/typo3/cms@6.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "CVE-2014-3943", "GHSA-qqh2-h6gw-6x8x" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9j2h-q1n5-kbgt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15587?format=api", "vulnerability_id": "VCID-d79s-4kzk-hugy", "summary": "Typo3 Host Header Spoofing Vulnerability\nTYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allows remote attackers to have unspecified impact via a crafted HTTP Host header, related to \"Host Spoofing.\"", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.5102", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51112", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51089", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51038", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51046", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51007", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.50939", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.50989", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.50973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51026", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51051", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51008", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51065", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51062", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51105", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51084", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51067", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51106", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946" }, { "reference_url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2942", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2942" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2014/06/03/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2014/06/03/2" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3941", "reference_id": "CVE-2014-3941", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3941" }, { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3941.yaml", "reference_id": "CVE-2014-3941.YAML", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3941.yaml" }, { "reference_url": "https://github.com/advisories/GHSA-594h-cx6w-p4jf", "reference_id": "GHSA-594h-cx6w-p4jf", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-594h-cx6w-p4jf" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54359?format=api", "purl": "pkg:composer/typo3/cms@6.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20696?format=api", "purl": "pkg:composer/typo3/cms@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7ngg-6yuz-jkge" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-adk5-989d-jkc9" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hpju-vhzg-jyes" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-nbzv-ppzf-53ae" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3" } ], "aliases": [ "CVE-2014-3941", "GHSA-594h-cx6w-p4jf" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d79s-4kzk-hugy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/19876?format=api", "vulnerability_id": "VCID-hpju-vhzg-jyes", "summary": "TYPO3 Arbitrary Shell Execution in Swiftmailer library\nThe swiftmailer library in use allows to execute arbitrary shell commands if the \"From\" header comes from a non-trusted source and no \"Return-Path\" is configured. Affected are only TYPO3 installation the configuration option\n```\n$GLOBALS['TYPO3_CONF_VARS']['MAIL']['transport'] \n```\nis set to \"sendmail\". Installations with the default configuration are not affected.", "references": [ { "reference_url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-10-22-2.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-10-22-2.yaml" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/313c4bba53dd78803a9ee97c1f6f1d450a521521", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/313c4bba53dd78803a9ee97c1f6f1d450a521521" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/6af37574e063929eaab066dd9920b1fa8815da12", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/6af37574e063929eaab066dd9920b1fa8815da12" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/dbdd9f22b7cebf43f2e4abdb2a6a8a9f32af8f61", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/dbdd9f22b7cebf43f2e4abdb2a6a8a9f32af8f61" }, { "reference_url": "https://github.com/TYPO3/typo3/commit/ead183c5acf25b7e1121adee5a5860bd9b5f05a2", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3/commit/ead183c5acf25b7e1121adee5a5860bd9b5f05a2" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-002", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-002" }, { "reference_url": "https://github.com/advisories/GHSA-45xg-4w5x-j429", "reference_id": "GHSA-45xg-4w5x-j429", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-45xg-4w5x-j429" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/61202?format=api", "purl": "pkg:composer/typo3/cms@6.1.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-vbbx-pk8m-jfhd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/20819?format=api", "purl": "pkg:composer/typo3/cms@6.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-99uu-rfrf-bqa7" }, { "vulnerability": "VCID-asym-tgh2-1kg8" }, { "vulnerability": "VCID-b45y-dr1a-7qd7" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-vbbx-pk8m-jfhd" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xp55-jxjr-zqcb" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.6" } ], "aliases": [ "GHSA-45xg-4w5x-j429" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hpju-vhzg-jyes" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15372?format=api", "vulnerability_id": "VCID-m3dg-q4eg-wyfb", "summary": "TYPO3 Color Picker Wizard component allows remote authenticated editors to execute arbitrary PHP code\nThe Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63396", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63313", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.6333", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63314", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63278", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63322", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63301", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.6332", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63333", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63331", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63299", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63344", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.6319", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63249", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63279", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63244", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63295", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2014-001" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2942", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2942" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2014/06/03/2", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2014/06/03/2" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3942", "reference_id": "CVE-2014-3942", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3942" }, { "reference_url": "https://github.com/advisories/GHSA-55g3-fjwm-w2c8", "reference_id": "GHSA-55g3-fjwm-w2c8", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-55g3-fjwm-w2c8" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54359?format=api", "purl": "pkg:composer/typo3/cms@6.1.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9" } ], "aliases": [ "CVE-2014-3942", "GHSA-55g3-fjwm-w2c8" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m3dg-q4eg-wyfb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/57974?format=api", "vulnerability_id": "VCID-nsh9-8twn-6ydn", "summary": "TYPO3 vulnerable to remote authenticated arbitrary code execution\nThe File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.9 and 6.1.x before 6.1.4 allows remote authenticated editors to execute arbitrary PHP code via unspecified characters in the file extension when renaming a file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4250.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4321", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.6549", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65413", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65397", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65414", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65425", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65422", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65401", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65445", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65286", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65335", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.6536", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65325", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65377", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65388", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65407", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65394", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65366", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00485", "scoring_system": "epss", "scoring_elements": "0.65402", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4321" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4321", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4321" }, { "reference_url": "https://typo3.org/security/advisory/typo3-core-sa-2013-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://typo3.org/security/advisory/typo3-core-sa-2013-003" }, { "reference_url": "https://github.com/advisories/GHSA-m76j-69c2-c3m8", "reference_id": "GHSA-m76j-69c2-c3m8", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-m76j-69c2-c3m8" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/84100?format=api", "purl": "pkg:composer/typo3/cms@6.1.4", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.4" } ], "aliases": [ "CVE-2013-4321", "GHSA-m76j-69c2-c3m8" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nsh9-8twn-6ydn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/15947?format=api", "vulnerability_id": "VCID-p8m8-y53c-cubn", "summary": "TYPO3 vulnerable to Information Disclosure via Content Editing Wizards component\nThe Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters.", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00106.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00106.html" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7073", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50912", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50963", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.5096", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.51002", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50981", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50965", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.51003", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.51009", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50988", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50934", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50942", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50904", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.5083", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50883", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50864", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50922", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50948", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00275", "scoring_system": "epss", "scoring_elements": "0.50906", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081" }, { "reference_url": "http://seclists.org/oss-sec/2013/q4/473", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://seclists.org/oss-sec/2013/q4/473" }, { "reference_url": "http://seclists.org/oss-sec/2013/q4/487", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://seclists.org/oss-sec/2013/q4/487" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2834", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2834" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7073", "reference_id": "CVE-2013-7073", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7073" }, { "reference_url": "https://github.com/advisories/GHSA-4rpv-g4gq-rh4m", "reference_id": "GHSA-4rpv-g4gq-rh4m", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4rpv-g4gq-rh4m" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/55256?format=api", "purl": "pkg:composer/typo3/cms@6.1.7", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.7" } ], "aliases": [ "CVE-2013-7073", "GHSA-4rpv-g4gq-rh4m" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p8m8-y53c-cubn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55459?format=api", "vulnerability_id": "VCID-vbbx-pk8m-jfhd", "summary": "Typo3 Vulnerable to Cache Poisoning\n**Problem Description:** A request URL with arbitrary arguments, but still pointing to the home page of a TYPO3 installation can be cached if the configuration option `config.prefixLocalAnchors` is used with the values \"all\" or \"cached\". The impact of this vulnerability is that unfamiliar looking links to the home page can end up in the cache, which leads to a reload of the page in the browser when section links are followed by web page visitors, instead of just directly jumping to the requested section of the page. TYPO3 versions 4.6.x and higher are only affected if the homepage is not a shortcut to a different page.\n\n**Solution:** Removing the configuration options `config.prefixLocalAnchors` (and optionally also config.baseUrl) in favor of `config.absRefPrefix`\n\n**Credits:** Thanks to Gernot Leitgab who discovered and reported the vulnerability.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9509", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70498", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70442", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70452", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70426", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70466", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70296", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70309", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70326", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70304", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70349", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70364", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70388", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70372", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70358", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70401", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70411", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00633", "scoring_system": "epss", "scoring_elements": "0.70392", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9509" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9509", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9509" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://github.com/advisories/GHSA-5479-gqqr-f9gj", "reference_id": "GHSA-5479-gqqr-f9gj", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-5479-gqqr-f9gj" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/82551?format=api", "purl": "pkg:composer/typo3/cms@6.1.13", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/20922?format=api", "purl": "pkg:composer/typo3/cms@6.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bnd-6xsq-nbec" }, { "vulnerability": "VCID-1jcy-nx8g-z3d3" }, { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-1qjx-grvf-y7bk" }, { "vulnerability": "VCID-25t3-1sm6-3kdn" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-3m2z-stmy-u7hm" }, { "vulnerability": "VCID-3m53-kkk2-j7c2" }, { "vulnerability": "VCID-435j-f3yx-9yep" }, { "vulnerability": "VCID-48jz-wwt8-33hx" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5ppt-avmb-cqb2" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-6wsa-4ywc-8fh4" }, { "vulnerability": "VCID-7d1g-j3k5-gub8" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-8jp8-a363-67be" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-b715-6z6c-qqar" }, { "vulnerability": "VCID-bck9-34jp-6ydx" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-c6zq-cfg5-u7d9" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dp6j-gnk4-rkd5" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-f963-qur3-2qb7" }, { "vulnerability": "VCID-fber-yp9q-f7dr" }, { "vulnerability": "VCID-fqbx-7xyq-fkav" }, { "vulnerability": "VCID-g4ak-ertr-rya6" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-gezz-pvpj-p3c6" }, { "vulnerability": "VCID-gnna-yjv5-cya2" }, { "vulnerability": "VCID-gspd-apwy-efgu" }, { "vulnerability": "VCID-h2dd-7b1r-k7bs" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-heyy-me7v-jyf5" }, { "vulnerability": "VCID-hkk9-f78q-xqd2" }, { "vulnerability": "VCID-hv3n-j8ck-1ufx" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-kuq7-h4ex-tkgc" }, { "vulnerability": "VCID-m3nf-1qbv-d3dj" }, { "vulnerability": "VCID-m43j-8zeh-47gz" }, { "vulnerability": "VCID-mc8q-fhyf-ekfj" }, { "vulnerability": "VCID-mhud-kq57-nka3" }, { "vulnerability": "VCID-mqk6-z77g-bfdv" }, { "vulnerability": "VCID-n61z-6v8a-hygf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nnh9-udcj-m7fv" }, { "vulnerability": "VCID-npn5-rand-q3dg" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-p1u9-66hm-47er" }, { "vulnerability": "VCID-p545-vwe6-9kfr" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-prbd-r82t-87dm" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-q9ak-qcq6-qfhy" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-re8y-zb3u-57h2" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rg5d-d8nc-9qfu" }, { "vulnerability": "VCID-rkms-w15c-4yb1" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-s49m-kyu7-vbee" }, { "vulnerability": "VCID-s8h9-rdvk-9yfp" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sszj-qy2p-ebbd" }, { "vulnerability": "VCID-u347-jazz-zke4" }, { "vulnerability": "VCID-u7nx-p1g7-cqhw" }, { "vulnerability": "VCID-uckg-j48d-efad" }, { "vulnerability": "VCID-uj89-13ub-43fz" }, { "vulnerability": "VCID-utpu-q2dv-m3hm" }, { "vulnerability": "VCID-w5pn-eb7y-1kdp" }, { "vulnerability": "VCID-wq32-kgff-gke8" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xwtv-48ph-6fb6" }, { "vulnerability": "VCID-z41h-5mem-gfc7" }, { "vulnerability": "VCID-z5qq-nwn5-tqgm" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zeku-t9fv-kych" }, { "vulnerability": "VCID-zp3u-ukzs-ukf6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/20923?format=api", "purl": "pkg:composer/typo3/cms@7.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1ng4-5tkh-g7h5" }, { "vulnerability": "VCID-28bf-jvah-zkhw" }, { "vulnerability": "VCID-2rhx-afay-97da" }, { "vulnerability": "VCID-37wu-bjfj-k7eg" }, { "vulnerability": "VCID-4etp-u4pt-v7hm" }, { "vulnerability": "VCID-51ba-3ag9-rucn" }, { "vulnerability": "VCID-5jgb-dsyx-hyb4" }, { "vulnerability": "VCID-5paq-5frf-43ed" }, { "vulnerability": "VCID-6b5q-vzs3-pkcc" }, { "vulnerability": "VCID-6gms-w48j-4ffh" }, { "vulnerability": "VCID-6pvx-1qan-ukef" }, { "vulnerability": "VCID-6spw-66jg-syb1" }, { "vulnerability": "VCID-7zx9-8afq-y3hc" }, { "vulnerability": "VCID-b5ht-z6zp-pbht" }, { "vulnerability": "VCID-bajy-qbwq-fufn" }, { "vulnerability": "VCID-bnne-7p2q-eqd2" }, { "vulnerability": "VCID-buax-rz7x-r7c2" }, { "vulnerability": "VCID-bxjw-7426-gyb8" }, { "vulnerability": "VCID-cczn-x8q7-k7ba" }, { "vulnerability": "VCID-cjgc-q6p5-2ydc" }, { "vulnerability": "VCID-ck23-cxn6-bbf3" }, { "vulnerability": "VCID-dbrh-t8zx-nkd9" }, { "vulnerability": "VCID-dm97-51uu-r7gw" }, { "vulnerability": "VCID-dsu7-jjjq-f3e1" }, { "vulnerability": "VCID-ehzg-bzrd-kbcc" }, { "vulnerability": "VCID-f4pm-9tq5-q3ch" }, { "vulnerability": "VCID-gcnj-6qb6-pbgz" }, { "vulnerability": "VCID-h958-d3pm-kfcs" }, { "vulnerability": "VCID-jmu3-5k7e-x7ch" }, { "vulnerability": "VCID-jqx9-41zx-dbcy" }, { "vulnerability": "VCID-kgcq-paqm-9ya6" }, { "vulnerability": "VCID-kpze-14jy-xud9" }, { "vulnerability": "VCID-kqbk-4q4z-nkec" }, { "vulnerability": "VCID-mnz3-rj21-67ad" }, { "vulnerability": "VCID-n15v-ta9h-6ffb" }, { "vulnerability": "VCID-n78p-x7hh-gqcf" }, { "vulnerability": "VCID-ne8w-dpjw-7qf1" }, { "vulnerability": "VCID-nwxj-3ajk-rkh5" }, { "vulnerability": "VCID-pgzu-kxuj-j3fh" }, { "vulnerability": "VCID-pk8d-8u15-5bfq" }, { "vulnerability": "VCID-q6dx-uskc-y3hs" }, { "vulnerability": "VCID-qemc-8kj8-r3cd" }, { "vulnerability": "VCID-rdrs-mhaw-b3ge" }, { "vulnerability": "VCID-re9h-ze98-rbhu" }, { "vulnerability": "VCID-rwgf-2pfh-ufdz" }, { "vulnerability": "VCID-se8w-fv8x-tqde" }, { "vulnerability": "VCID-sr3p-pdxy-4yhu" }, { "vulnerability": "VCID-t3jn-vwbx-u7cr" }, { "vulnerability": "VCID-tmrt-6fxw-5ugh" }, { "vulnerability": "VCID-tw1y-t4qj-j3d1" }, { "vulnerability": "VCID-vndb-w8e1-4ugv" }, { "vulnerability": "VCID-wr5t-xqnn-gkcj" }, { "vulnerability": "VCID-ww44-zmx7-47ft" }, { "vulnerability": "VCID-wxps-mnue-6bbh" }, { "vulnerability": "VCID-xa4m-xpa9-v7h8" }, { "vulnerability": "VCID-xhq3-ts9t-sbdy" }, { "vulnerability": "VCID-xkpp-psz2-2kag" }, { "vulnerability": "VCID-xqew-bx7v-1qfk" }, { "vulnerability": "VCID-y32z-2d3f-gkgw" }, { "vulnerability": "VCID-zdq2-dhb2-6kaq" }, { "vulnerability": "VCID-zspb-bd6j-wyd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.2" } ], "aliases": [ "CVE-2014-9509", "GHSA-5479-gqqr-f9gj" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vbbx-pk8m-jfhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55950?format=api", "vulnerability_id": "VCID-y9d1-wwne-hba5", "summary": "several", "references": [ { "reference_url": "http://osvdb.org/100881", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://osvdb.org/100881" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7074", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.5635", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56223", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56333", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56355", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56336", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56387", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56393", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56403", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56379", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56361", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56394", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56363", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56285", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56306", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56284", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56237", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00335", "scoring_system": "epss", "scoring_elements": "0.56287", "published_at": "2026-05-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7074" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081" }, { "reference_url": "http://seclists.org/oss-sec/2013/q4/473", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://seclists.org/oss-sec/2013/q4/473" }, { "reference_url": "http://seclists.org/oss-sec/2013/q4/487", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://seclists.org/oss-sec/2013/q4/487" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89620", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89620" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7074", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7074" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2834", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2834" }, { "reference_url": "http://www.securityfocus.com/bid/64245", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N" }, { "value": "LOW", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/64245" }, { "reference_url": "https://github.com/advisories/GHSA-r8m7-792j-5jvq", "reference_id": "GHSA-r8m7-792j-5jvq", "reference_type": "", "scores": [ { "value": "LOW", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r8m7-792j-5jvq" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/55256?format=api", "purl": "pkg:composer/typo3/cms@6.1.7", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.7" } ], "aliases": [ "CVE-2013-7074", "GHSA-r8m7-792j-5jvq" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y9d1-wwne-hba5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/55521?format=api", "vulnerability_id": "VCID-zqqe-vew2-nbfk", "summary": "TYPO3 vulnerable to Insecure Unserialize via Content Editing Wizards component\nThe Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbitrary PHP objects, delete arbitrary files, and possibly have other unspecified impacts via an unspecified parameter, related to a \"missing signature.\"", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7075", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61264", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61215", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61202", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61183", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61223", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61228", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61209", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61199", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61214", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61208", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61157", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61206", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.6106", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61138", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61166", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61132", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.6118", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00408", "scoring_system": "epss", "scoring_elements": "0.61195", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-7075" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081" }, { "reference_url": "http://seclists.org/oss-sec/2013/q4/473", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://seclists.org/oss-sec/2013/q4/473" }, { "reference_url": "https://github.com/TYPO3/typo3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/TYPO3/typo3" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7075", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7075" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004" }, { "reference_url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/" }, { "reference_url": "http://www.debian.org/security/2014/dsa-2834", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2014/dsa-2834" }, { "reference_url": "https://github.com/advisories/GHSA-47ww-mq32-g4xw", "reference_id": "GHSA-47ww-mq32-g4xw", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-47ww-mq32-g4xw" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/55256?format=api", "purl": "pkg:composer/typo3/cms@6.1.7", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.7" } ], "aliases": [ "CVE-2013-7075", "GHSA-47ww-mq32-g4xw" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zqqe-vew2-nbfk" } ], "fixing_vulnerabilities": [], "risk_score": "4.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.0" }