{"url":"http://public2.vulnerablecode.io/api/packages/54355?format=json","purl":"pkg:composer/typo3/cms@6.1.0","type":"composer","namespace":"typo3","name":"cms","version":"6.1.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"10.4.35","latest_non_vulnerable_version":"12.2.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/19111?format=json","vulnerability_id":"VCID-59zz-tmvz-sqgm","summary":"ExtJS JavaScript framework used in TYPO3 vulnerable to Cross-site Scripting\nFailing to properly validate the HTTP host-header TYPO3 CMS is susceptible to host spoofing. TYPO3 uses the HTTP host-header to generate absolute URLs in several places like 404 handling, http(s) enforcement, password reset links and many more. Since the host header itself is provided by the client it can be forged to any value, even in a name based virtual hosts environment. A blog post describes this problem in great detail.","references":[{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-05-22-1.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-05-22-1.yaml"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"https://github.com/TYPO3/typo3/commit/32efb1b03573d51391126c90cd87c74b3dc457fb","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/32efb1b03573d51391126c90cd87c74b3dc457fb"},{"reference_url":"https://github.com/TYPO3/typo3/commit/9bd777649e4022c89dbf39ca41988a594b5e94b8","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/9bd777649e4022c89dbf39ca41988a594b5e94b8"},{"reference_url":"https://github.com/TYPO3/typo3/commit/c39bca9613c311dd12e61771dd311b1bb2283b8d","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/c39bca9613c311dd12e61771dd311b1bb2283b8d"},{"reference_url":"https://github.com/TYPO3/typo3/commit/d554ac5323f3b0fac1fce4c2c491d0123badd669","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/d554ac5323f3b0fac1fce4c2c491d0123badd669"},{"reference_url":"https://typo3.org/security/advisory/typo3-core-sa-2014-001","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/security/advisory/typo3-core-sa-2014-001"},{"reference_url":"https://web.archive.org/web/20140531042943/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://web.archive.org/web/20140531042943/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001"},{"reference_url":"https://github.com/advisories/GHSA-mxjf-hc9v-xgv2","reference_id":"GHSA-mxjf-hc9v-xgv2","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mxjf-hc9v-xgv2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/54359?format=json","purl":"pkg:composer/typo3/cms@6.1.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9"},{"url":"http://public2.vulnerablecode.io/api/packages/20696?format=json","purl":"pkg:composer/typo3/cms@6.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1bnd-6xsq-nbec"},{"vulnerability":"VCID-1jcy-nx8g-z3d3"},{"vulnerability":"VCID-1ng4-5tkh-g7h5"},{"vulnerability":"VCID-1qjx-grvf-y7bk"},{"vulnerability":"VCID-25t3-1sm6-3kdn"},{"vulnerability":"VCID-2rhx-afay-97da"},{"vulnerability":"VCID-37wu-bjfj-k7eg"},{"vulnerability":"VCID-3m2z-stmy-u7hm"},{"vulnerability":"VCID-3m53-kkk2-j7c2"},{"vulnerability":"VCID-435j-f3yx-9yep"},{"vulnerability":"VCID-48jz-wwt8-33hx"},{"vulnerability":"VCID-4etp-u4pt-v7hm"},{"vulnerability":"VCID-51ba-3ag9-rucn"},{"vulnerability":"VCID-5jgb-dsyx-hyb4"},{"vulnerability":"VCID-5ppt-avmb-cqb2"},{"vulnerability":"VCID-6gms-w48j-4ffh"},{"vulnerability":"VCID-6pvx-1qan-ukef"},{"vulnerability":"VCID-6spw-66jg-syb1"},{"vulnerability":"VCID-6wsa-4ywc-8fh4"},{"vulnerability":"VCID-7d1g-j3k5-gub8"},{"vulnerability":"VCID-7ngg-6yuz-jkge"},{"vulnerability":"VCID-7zx9-8afq-y3hc"},{"vulnerability":"VCID-8jp8-a363-67be"},{"vulnerability":"VCID-99uu-rfrf-bqa7"},{"vulnerability":"VCID-adk5-989d-jkc9"},{"vulnerability":"VCID-asym-tgh2-1kg8"},{"vulnerability":"VCID-b45y-dr1a-7qd7"},{"vulnerability":"VCID-b5ht-z6zp-pbht"},{"vulnerability":"VCID-b715-6z6c-qqar"},{"vulnerability":"VCID-bck9-34jp-6ydx"},{"vulnerability":"VCID-buax-rz7x-r7c2"},{"vulnerability":"VCID-c6zq-cfg5-u7d9"},{"vulnerability":"VCID-cczn-x8q7-k7ba"},{"vulnerability":"VCID-cjgc-q6p5-2ydc"},{"vulnerability":"VCID-ck23-cxn6-bbf3"},{"vulnerability":"VCID-dp6j-gnk4-rkd5"},{"vulnerability":"VCID-dsu7-jjjq-f3e1"},{"vulnerability":"VCID-f4pm-9tq5-q3ch"},{"vulnerability":"VCID-f963-qur3-2qb7"},{"vulnerability":"VCID-fber-yp9q-f7dr"},{"vulnerability":"VCID-fqbx-7xyq-fkav"},{"vulnerability":"VCID-g4ak-ertr-rya6"},{"vulnerability":"VCID-gcnj-6qb6-pbgz"},{"vulnerability":"VCID-gezz-pvpj-p3c6"},{"vulnerability":"VCID-gnna-yjv5-cya2"},{"vulnerability":"VCID-gspd-apwy-efgu"},{"vulnerability":"VCID-h2dd-7b1r-k7bs"},{"vulnerability":"VCID-h958-d3pm-kfcs"},{"vulnerability":"VCID-heyy-me7v-jyf5"},{"vulnerability":"VCID-hkk9-f78q-xqd2"},{"vulnerability":"VCID-hpju-vhzg-jyes"},{"vulnerability":"VCID-hv3n-j8ck-1ufx"},{"vulnerability":"VCID-jmu3-5k7e-x7ch"},{"vulnerability":"VCID-jqx9-41zx-dbcy"},{"vulnerability":"VCID-kgcq-paqm-9ya6"},{"vulnerability":"VCID-kpze-14jy-xud9"},{"vulnerability":"VCID-kqbk-4q4z-nkec"},{"vulnerability":"VCID-kuq7-h4ex-tkgc"},{"vulnerability":"VCID-m3nf-1qbv-d3dj"},{"vulnerability":"VCID-m43j-8zeh-47gz"},{"vulnerability":"VCID-mc8q-fhyf-ekfj"},{"vulnerability":"VCID-mhud-kq57-nka3"},{"vulnerability":"VCID-mqk6-z77g-bfdv"},{"vulnerability":"VCID-n61z-6v8a-hygf"},{"vulnerability":"VCID-nbzv-ppzf-53ae"},{"vulnerability":"VCID-ne8w-dpjw-7qf1"},{"vulnerability":"VCID-nnh9-udcj-m7fv"},{"vulnerability":"VCID-npn5-rand-q3dg"},{"vulnerability":"VCID-nwxj-3ajk-rkh5"},{"vulnerability":"VCID-p1u9-66hm-47er"},{"vulnerability":"VCID-p545-vwe6-9kfr"},{"vulnerability":"VCID-pgzu-kxuj-j3fh"},{"vulnerability":"VCID-prbd-r82t-87dm"},{"vulnerability":"VCID-q6dx-uskc-y3hs"},{"vulnerability":"VCID-q9ak-qcq6-qfhy"},{"vulnerability":"VCID-qemc-8kj8-r3cd"},{"vulnerability":"VCID-re8y-zb3u-57h2"},{"vulnerability":"VCID-re9h-ze98-rbhu"},{"vulnerability":"VCID-rg5d-d8nc-9qfu"},{"vulnerability":"VCID-rkms-w15c-4yb1"},{"vulnerability":"VCID-rwgf-2pfh-ufdz"},{"vulnerability":"VCID-s49m-kyu7-vbee"},{"vulnerability":"VCID-s8h9-rdvk-9yfp"},{"vulnerability":"VCID-se8w-fv8x-tqde"},{"vulnerability":"VCID-sszj-qy2p-ebbd"},{"vulnerability":"VCID-u347-jazz-zke4"},{"vulnerability":"VCID-u7nx-p1g7-cqhw"},{"vulnerability":"VCID-uckg-j48d-efad"},{"vulnerability":"VCID-uj89-13ub-43fz"},{"vulnerability":"VCID-utpu-q2dv-m3hm"},{"vulnerability":"VCID-vbbx-pk8m-jfhd"},{"vulnerability":"VCID-w5pn-eb7y-1kdp"},{"vulnerability":"VCID-wq32-kgff-gke8"},{"vulnerability":"VCID-ww44-zmx7-47ft"},{"vulnerability":"VCID-xa4m-xpa9-v7h8"},{"vulnerability":"VCID-xhq3-ts9t-sbdy"},{"vulnerability":"VCID-xkpp-psz2-2kag"},{"vulnerability":"VCID-xp55-jxjr-zqcb"},{"vulnerability":"VCID-xwtv-48ph-6fb6"},{"vulnerability":"VCID-z41h-5mem-gfc7"},{"vulnerability":"VCID-z5qq-nwn5-tqgm"},{"vulnerability":"VCID-zdq2-dhb2-6kaq"},{"vulnerability":"VCID-zeku-t9fv-kych"},{"vulnerability":"VCID-zp3u-ukzs-ukf6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3"}],"aliases":["GHSA-mxjf-hc9v-xgv2"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-59zz-tmvz-sqgm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56684?format=json","vulnerability_id":"VCID-635d-efe6-bbgm","summary":"TYPO3 doesn't properly check file extensions\nThe (1) file upload component and (2) File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.8 and 6.1.x before 6.1.3 do not properly check file extensions, which allow remote authenticated editors to execute arbitrary PHP code by uploading a .php file.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4250","reference_id":"","reference_type":"","scores":[{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60205","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60156","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60172","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60158","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60115","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60162","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.6022","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60178","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60026","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60104","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60128","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60097","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60147","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60161","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60183","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60169","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60151","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.6019","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00391","scoring_system":"epss","scoring_elements":"0.60197","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4250"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2013-4250","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-4250"},{"reference_url":"https://typo3.org/security/advisory/typo3-core-sa-2013-002","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/security/advisory/typo3-core-sa-2013-002"},{"reference_url":"https://github.com/advisories/GHSA-54jj-pxx2-pv8h","reference_id":"GHSA-54jj-pxx2-pv8h","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-54jj-pxx2-pv8h"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/83133?format=json","purl":"pkg:composer/typo3/cms@6.1.3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.3"}],"aliases":["CVE-2013-4250","GHSA-54jj-pxx2-pv8h"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-635d-efe6-bbgm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15673?format=json","vulnerability_id":"VCID-9j2h-q1n5-kbgt","summary":"Typo3 XSS Vulnerabilities\nMultiple cross-site scripting (XSS) vulnerabilities in unspecified backend components in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allow remote authenticated editors to inject arbitrary web script or HTML via unknown parameters.","references":[{"reference_url":"http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3943","reference_id":"","reference_type":"","scores":[{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.42913","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43128","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43062","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43064","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.42982","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.42847","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.42923","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.42942","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.42883","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43083","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43142","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43169","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43107","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.4316","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43173","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43194","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43161","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43146","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43205","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00208","scoring_system":"epss","scoring_elements":"0.43195","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3943"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946"},{"reference_url":"https://typo3.org/security/advisory/typo3-core-sa-2014-001","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/security/advisory/typo3-core-sa-2014-001"},{"reference_url":"https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001"},{"reference_url":"https://web.archive.org/web/20200229060129/http://www.securityfocus.com/bid/67625","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://web.archive.org/web/20200229060129/http://www.securityfocus.com/bid/67625"},{"reference_url":"http://www.debian.org/security/2014/dsa-2942","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2014/dsa-2942"},{"reference_url":"http://www.openwall.com/lists/oss-security/2014/06/03/2","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2014/06/03/2"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3943","reference_id":"CVE-2014-3943","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3943"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3943.yaml","reference_id":"CVE-2014-3943.YAML","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3943.yaml"},{"reference_url":"https://github.com/advisories/GHSA-qqh2-h6gw-6x8x","reference_id":"GHSA-qqh2-h6gw-6x8x","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qqh2-h6gw-6x8x"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/54359?format=json","purl":"pkg:composer/typo3/cms@6.1.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9"},{"url":"http://public2.vulnerablecode.io/api/packages/20696?format=json","purl":"pkg:composer/typo3/cms@6.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1bnd-6xsq-nbec"},{"vulnerability":"VCID-1jcy-nx8g-z3d3"},{"vulnerability":"VCID-1ng4-5tkh-g7h5"},{"vulnerability":"VCID-1qjx-grvf-y7bk"},{"vulnerability":"VCID-25t3-1sm6-3kdn"},{"vulnerability":"VCID-2rhx-afay-97da"},{"vulnerability":"VCID-37wu-bjfj-k7eg"},{"vulnerability":"VCID-3m2z-stmy-u7hm"},{"vulnerability":"VCID-3m53-kkk2-j7c2"},{"vulnerability":"VCID-435j-f3yx-9yep"},{"vulnerability":"VCID-48jz-wwt8-33hx"},{"vulnerability":"VCID-4etp-u4pt-v7hm"},{"vulnerability":"VCID-51ba-3ag9-rucn"},{"vulnerability":"VCID-5jgb-dsyx-hyb4"},{"vulnerability":"VCID-5ppt-avmb-cqb2"},{"vulnerability":"VCID-6gms-w48j-4ffh"},{"vulnerability":"VCID-6pvx-1qan-ukef"},{"vulnerability":"VCID-6spw-66jg-syb1"},{"vulnerability":"VCID-6wsa-4ywc-8fh4"},{"vulnerability":"VCID-7d1g-j3k5-gub8"},{"vulnerability":"VCID-7ngg-6yuz-jkge"},{"vulnerability":"VCID-7zx9-8afq-y3hc"},{"vulnerability":"VCID-8jp8-a363-67be"},{"vulnerability":"VCID-99uu-rfrf-bqa7"},{"vulnerability":"VCID-adk5-989d-jkc9"},{"vulnerability":"VCID-asym-tgh2-1kg8"},{"vulnerability":"VCID-b45y-dr1a-7qd7"},{"vulnerability":"VCID-b5ht-z6zp-pbht"},{"vulnerability":"VCID-b715-6z6c-qqar"},{"vulnerability":"VCID-bck9-34jp-6ydx"},{"vulnerability":"VCID-buax-rz7x-r7c2"},{"vulnerability":"VCID-c6zq-cfg5-u7d9"},{"vulnerability":"VCID-cczn-x8q7-k7ba"},{"vulnerability":"VCID-cjgc-q6p5-2ydc"},{"vulnerability":"VCID-ck23-cxn6-bbf3"},{"vulnerability":"VCID-dp6j-gnk4-rkd5"},{"vulnerability":"VCID-dsu7-jjjq-f3e1"},{"vulnerability":"VCID-f4pm-9tq5-q3ch"},{"vulnerability":"VCID-f963-qur3-2qb7"},{"vulnerability":"VCID-fber-yp9q-f7dr"},{"vulnerability":"VCID-fqbx-7xyq-fkav"},{"vulnerability":"VCID-g4ak-ertr-rya6"},{"vulnerability":"VCID-gcnj-6qb6-pbgz"},{"vulnerability":"VCID-gezz-pvpj-p3c6"},{"vulnerability":"VCID-gnna-yjv5-cya2"},{"vulnerability":"VCID-gspd-apwy-efgu"},{"vulnerability":"VCID-h2dd-7b1r-k7bs"},{"vulnerability":"VCID-h958-d3pm-kfcs"},{"vulnerability":"VCID-heyy-me7v-jyf5"},{"vulnerability":"VCID-hkk9-f78q-xqd2"},{"vulnerability":"VCID-hpju-vhzg-jyes"},{"vulnerability":"VCID-hv3n-j8ck-1ufx"},{"vulnerability":"VCID-jmu3-5k7e-x7ch"},{"vulnerability":"VCID-jqx9-41zx-dbcy"},{"vulnerability":"VCID-kgcq-paqm-9ya6"},{"vulnerability":"VCID-kpze-14jy-xud9"},{"vulnerability":"VCID-kqbk-4q4z-nkec"},{"vulnerability":"VCID-kuq7-h4ex-tkgc"},{"vulnerability":"VCID-m3nf-1qbv-d3dj"},{"vulnerability":"VCID-m43j-8zeh-47gz"},{"vulnerability":"VCID-mc8q-fhyf-ekfj"},{"vulnerability":"VCID-mhud-kq57-nka3"},{"vulnerability":"VCID-mqk6-z77g-bfdv"},{"vulnerability":"VCID-n61z-6v8a-hygf"},{"vulnerability":"VCID-nbzv-ppzf-53ae"},{"vulnerability":"VCID-ne8w-dpjw-7qf1"},{"vulnerability":"VCID-nnh9-udcj-m7fv"},{"vulnerability":"VCID-npn5-rand-q3dg"},{"vulnerability":"VCID-nwxj-3ajk-rkh5"},{"vulnerability":"VCID-p1u9-66hm-47er"},{"vulnerability":"VCID-p545-vwe6-9kfr"},{"vulnerability":"VCID-pgzu-kxuj-j3fh"},{"vulnerability":"VCID-prbd-r82t-87dm"},{"vulnerability":"VCID-q6dx-uskc-y3hs"},{"vulnerability":"VCID-q9ak-qcq6-qfhy"},{"vulnerability":"VCID-qemc-8kj8-r3cd"},{"vulnerability":"VCID-re8y-zb3u-57h2"},{"vulnerability":"VCID-re9h-ze98-rbhu"},{"vulnerability":"VCID-rg5d-d8nc-9qfu"},{"vulnerability":"VCID-rkms-w15c-4yb1"},{"vulnerability":"VCID-rwgf-2pfh-ufdz"},{"vulnerability":"VCID-s49m-kyu7-vbee"},{"vulnerability":"VCID-s8h9-rdvk-9yfp"},{"vulnerability":"VCID-se8w-fv8x-tqde"},{"vulnerability":"VCID-sszj-qy2p-ebbd"},{"vulnerability":"VCID-u347-jazz-zke4"},{"vulnerability":"VCID-u7nx-p1g7-cqhw"},{"vulnerability":"VCID-uckg-j48d-efad"},{"vulnerability":"VCID-uj89-13ub-43fz"},{"vulnerability":"VCID-utpu-q2dv-m3hm"},{"vulnerability":"VCID-vbbx-pk8m-jfhd"},{"vulnerability":"VCID-w5pn-eb7y-1kdp"},{"vulnerability":"VCID-wq32-kgff-gke8"},{"vulnerability":"VCID-ww44-zmx7-47ft"},{"vulnerability":"VCID-xa4m-xpa9-v7h8"},{"vulnerability":"VCID-xhq3-ts9t-sbdy"},{"vulnerability":"VCID-xkpp-psz2-2kag"},{"vulnerability":"VCID-xp55-jxjr-zqcb"},{"vulnerability":"VCID-xwtv-48ph-6fb6"},{"vulnerability":"VCID-z41h-5mem-gfc7"},{"vulnerability":"VCID-z5qq-nwn5-tqgm"},{"vulnerability":"VCID-zdq2-dhb2-6kaq"},{"vulnerability":"VCID-zeku-t9fv-kych"},{"vulnerability":"VCID-zp3u-ukzs-ukf6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3"}],"aliases":["CVE-2014-3943","GHSA-qqh2-h6gw-6x8x"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9j2h-q1n5-kbgt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15587?format=json","vulnerability_id":"VCID-d79s-4kzk-hugy","summary":"Typo3 Host Header Spoofing Vulnerability\nTYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allows remote attackers to have unspecified impact via a crafted HTTP Host header, related to \"Host Spoofing.\"","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3941","reference_id":"","reference_type":"","scores":[{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.50978","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51089","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51038","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51046","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51007","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.50939","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.50989","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.5102","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.50973","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51026","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51051","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51008","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51065","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51062","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51105","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51084","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51067","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51106","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00276","scoring_system":"epss","scoring_elements":"0.51112","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3941"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946"},{"reference_url":"https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-001"},{"reference_url":"http://www.debian.org/security/2014/dsa-2942","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2014/dsa-2942"},{"reference_url":"http://www.openwall.com/lists/oss-security/2014/06/03/2","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2014/06/03/2"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3941","reference_id":"CVE-2014-3941","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3941"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3941.yaml","reference_id":"CVE-2014-3941.YAML","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2014-3941.yaml"},{"reference_url":"https://github.com/advisories/GHSA-594h-cx6w-p4jf","reference_id":"GHSA-594h-cx6w-p4jf","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-594h-cx6w-p4jf"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/54359?format=json","purl":"pkg:composer/typo3/cms@6.1.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9"},{"url":"http://public2.vulnerablecode.io/api/packages/20696?format=json","purl":"pkg:composer/typo3/cms@6.2.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1bnd-6xsq-nbec"},{"vulnerability":"VCID-1jcy-nx8g-z3d3"},{"vulnerability":"VCID-1ng4-5tkh-g7h5"},{"vulnerability":"VCID-1qjx-grvf-y7bk"},{"vulnerability":"VCID-25t3-1sm6-3kdn"},{"vulnerability":"VCID-2rhx-afay-97da"},{"vulnerability":"VCID-37wu-bjfj-k7eg"},{"vulnerability":"VCID-3m2z-stmy-u7hm"},{"vulnerability":"VCID-3m53-kkk2-j7c2"},{"vulnerability":"VCID-435j-f3yx-9yep"},{"vulnerability":"VCID-48jz-wwt8-33hx"},{"vulnerability":"VCID-4etp-u4pt-v7hm"},{"vulnerability":"VCID-51ba-3ag9-rucn"},{"vulnerability":"VCID-5jgb-dsyx-hyb4"},{"vulnerability":"VCID-5ppt-avmb-cqb2"},{"vulnerability":"VCID-6gms-w48j-4ffh"},{"vulnerability":"VCID-6pvx-1qan-ukef"},{"vulnerability":"VCID-6spw-66jg-syb1"},{"vulnerability":"VCID-6wsa-4ywc-8fh4"},{"vulnerability":"VCID-7d1g-j3k5-gub8"},{"vulnerability":"VCID-7ngg-6yuz-jkge"},{"vulnerability":"VCID-7zx9-8afq-y3hc"},{"vulnerability":"VCID-8jp8-a363-67be"},{"vulnerability":"VCID-99uu-rfrf-bqa7"},{"vulnerability":"VCID-adk5-989d-jkc9"},{"vulnerability":"VCID-asym-tgh2-1kg8"},{"vulnerability":"VCID-b45y-dr1a-7qd7"},{"vulnerability":"VCID-b5ht-z6zp-pbht"},{"vulnerability":"VCID-b715-6z6c-qqar"},{"vulnerability":"VCID-bck9-34jp-6ydx"},{"vulnerability":"VCID-buax-rz7x-r7c2"},{"vulnerability":"VCID-c6zq-cfg5-u7d9"},{"vulnerability":"VCID-cczn-x8q7-k7ba"},{"vulnerability":"VCID-cjgc-q6p5-2ydc"},{"vulnerability":"VCID-ck23-cxn6-bbf3"},{"vulnerability":"VCID-dp6j-gnk4-rkd5"},{"vulnerability":"VCID-dsu7-jjjq-f3e1"},{"vulnerability":"VCID-f4pm-9tq5-q3ch"},{"vulnerability":"VCID-f963-qur3-2qb7"},{"vulnerability":"VCID-fber-yp9q-f7dr"},{"vulnerability":"VCID-fqbx-7xyq-fkav"},{"vulnerability":"VCID-g4ak-ertr-rya6"},{"vulnerability":"VCID-gcnj-6qb6-pbgz"},{"vulnerability":"VCID-gezz-pvpj-p3c6"},{"vulnerability":"VCID-gnna-yjv5-cya2"},{"vulnerability":"VCID-gspd-apwy-efgu"},{"vulnerability":"VCID-h2dd-7b1r-k7bs"},{"vulnerability":"VCID-h958-d3pm-kfcs"},{"vulnerability":"VCID-heyy-me7v-jyf5"},{"vulnerability":"VCID-hkk9-f78q-xqd2"},{"vulnerability":"VCID-hpju-vhzg-jyes"},{"vulnerability":"VCID-hv3n-j8ck-1ufx"},{"vulnerability":"VCID-jmu3-5k7e-x7ch"},{"vulnerability":"VCID-jqx9-41zx-dbcy"},{"vulnerability":"VCID-kgcq-paqm-9ya6"},{"vulnerability":"VCID-kpze-14jy-xud9"},{"vulnerability":"VCID-kqbk-4q4z-nkec"},{"vulnerability":"VCID-kuq7-h4ex-tkgc"},{"vulnerability":"VCID-m3nf-1qbv-d3dj"},{"vulnerability":"VCID-m43j-8zeh-47gz"},{"vulnerability":"VCID-mc8q-fhyf-ekfj"},{"vulnerability":"VCID-mhud-kq57-nka3"},{"vulnerability":"VCID-mqk6-z77g-bfdv"},{"vulnerability":"VCID-n61z-6v8a-hygf"},{"vulnerability":"VCID-nbzv-ppzf-53ae"},{"vulnerability":"VCID-ne8w-dpjw-7qf1"},{"vulnerability":"VCID-nnh9-udcj-m7fv"},{"vulnerability":"VCID-npn5-rand-q3dg"},{"vulnerability":"VCID-nwxj-3ajk-rkh5"},{"vulnerability":"VCID-p1u9-66hm-47er"},{"vulnerability":"VCID-p545-vwe6-9kfr"},{"vulnerability":"VCID-pgzu-kxuj-j3fh"},{"vulnerability":"VCID-prbd-r82t-87dm"},{"vulnerability":"VCID-q6dx-uskc-y3hs"},{"vulnerability":"VCID-q9ak-qcq6-qfhy"},{"vulnerability":"VCID-qemc-8kj8-r3cd"},{"vulnerability":"VCID-re8y-zb3u-57h2"},{"vulnerability":"VCID-re9h-ze98-rbhu"},{"vulnerability":"VCID-rg5d-d8nc-9qfu"},{"vulnerability":"VCID-rkms-w15c-4yb1"},{"vulnerability":"VCID-rwgf-2pfh-ufdz"},{"vulnerability":"VCID-s49m-kyu7-vbee"},{"vulnerability":"VCID-s8h9-rdvk-9yfp"},{"vulnerability":"VCID-se8w-fv8x-tqde"},{"vulnerability":"VCID-sszj-qy2p-ebbd"},{"vulnerability":"VCID-u347-jazz-zke4"},{"vulnerability":"VCID-u7nx-p1g7-cqhw"},{"vulnerability":"VCID-uckg-j48d-efad"},{"vulnerability":"VCID-uj89-13ub-43fz"},{"vulnerability":"VCID-utpu-q2dv-m3hm"},{"vulnerability":"VCID-vbbx-pk8m-jfhd"},{"vulnerability":"VCID-w5pn-eb7y-1kdp"},{"vulnerability":"VCID-wq32-kgff-gke8"},{"vulnerability":"VCID-ww44-zmx7-47ft"},{"vulnerability":"VCID-xa4m-xpa9-v7h8"},{"vulnerability":"VCID-xhq3-ts9t-sbdy"},{"vulnerability":"VCID-xkpp-psz2-2kag"},{"vulnerability":"VCID-xp55-jxjr-zqcb"},{"vulnerability":"VCID-xwtv-48ph-6fb6"},{"vulnerability":"VCID-z41h-5mem-gfc7"},{"vulnerability":"VCID-z5qq-nwn5-tqgm"},{"vulnerability":"VCID-zdq2-dhb2-6kaq"},{"vulnerability":"VCID-zeku-t9fv-kych"},{"vulnerability":"VCID-zp3u-ukzs-ukf6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.3"}],"aliases":["CVE-2014-3941","GHSA-594h-cx6w-p4jf"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d79s-4kzk-hugy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/19876?format=json","vulnerability_id":"VCID-hpju-vhzg-jyes","summary":"TYPO3 Arbitrary Shell Execution in Swiftmailer library\nThe swiftmailer library in use allows to execute arbitrary shell commands if the \"From\" header comes from a non-trusted source and no \"Return-Path\" is configured. Affected are only TYPO3 installation the configuration option\n```\n$GLOBALS['TYPO3_CONF_VARS']['MAIL']['transport'] \n```\nis set to \"sendmail\". Installations with the default configuration are not affected.","references":[{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-10-22-2.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2014-10-22-2.yaml"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"https://github.com/TYPO3/typo3/commit/313c4bba53dd78803a9ee97c1f6f1d450a521521","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/313c4bba53dd78803a9ee97c1f6f1d450a521521"},{"reference_url":"https://github.com/TYPO3/typo3/commit/6af37574e063929eaab066dd9920b1fa8815da12","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/6af37574e063929eaab066dd9920b1fa8815da12"},{"reference_url":"https://github.com/TYPO3/typo3/commit/dbdd9f22b7cebf43f2e4abdb2a6a8a9f32af8f61","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/dbdd9f22b7cebf43f2e4abdb2a6a8a9f32af8f61"},{"reference_url":"https://github.com/TYPO3/typo3/commit/ead183c5acf25b7e1121adee5a5860bd9b5f05a2","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3/commit/ead183c5acf25b7e1121adee5a5860bd9b5f05a2"},{"reference_url":"https://typo3.org/security/advisory/typo3-core-sa-2014-002","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/security/advisory/typo3-core-sa-2014-002"},{"reference_url":"https://github.com/advisories/GHSA-45xg-4w5x-j429","reference_id":"GHSA-45xg-4w5x-j429","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-45xg-4w5x-j429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61202?format=json","purl":"pkg:composer/typo3/cms@6.1.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-vbbx-pk8m-jfhd"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.12"},{"url":"http://public2.vulnerablecode.io/api/packages/20819?format=json","purl":"pkg:composer/typo3/cms@6.2.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1bnd-6xsq-nbec"},{"vulnerability":"VCID-1jcy-nx8g-z3d3"},{"vulnerability":"VCID-1ng4-5tkh-g7h5"},{"vulnerability":"VCID-1qjx-grvf-y7bk"},{"vulnerability":"VCID-25t3-1sm6-3kdn"},{"vulnerability":"VCID-2rhx-afay-97da"},{"vulnerability":"VCID-37wu-bjfj-k7eg"},{"vulnerability":"VCID-3m2z-stmy-u7hm"},{"vulnerability":"VCID-3m53-kkk2-j7c2"},{"vulnerability":"VCID-435j-f3yx-9yep"},{"vulnerability":"VCID-48jz-wwt8-33hx"},{"vulnerability":"VCID-4etp-u4pt-v7hm"},{"vulnerability":"VCID-51ba-3ag9-rucn"},{"vulnerability":"VCID-5jgb-dsyx-hyb4"},{"vulnerability":"VCID-5ppt-avmb-cqb2"},{"vulnerability":"VCID-6gms-w48j-4ffh"},{"vulnerability":"VCID-6pvx-1qan-ukef"},{"vulnerability":"VCID-6spw-66jg-syb1"},{"vulnerability":"VCID-6wsa-4ywc-8fh4"},{"vulnerability":"VCID-7d1g-j3k5-gub8"},{"vulnerability":"VCID-7zx9-8afq-y3hc"},{"vulnerability":"VCID-8jp8-a363-67be"},{"vulnerability":"VCID-99uu-rfrf-bqa7"},{"vulnerability":"VCID-asym-tgh2-1kg8"},{"vulnerability":"VCID-b45y-dr1a-7qd7"},{"vulnerability":"VCID-b5ht-z6zp-pbht"},{"vulnerability":"VCID-b715-6z6c-qqar"},{"vulnerability":"VCID-bck9-34jp-6ydx"},{"vulnerability":"VCID-buax-rz7x-r7c2"},{"vulnerability":"VCID-c6zq-cfg5-u7d9"},{"vulnerability":"VCID-cczn-x8q7-k7ba"},{"vulnerability":"VCID-cjgc-q6p5-2ydc"},{"vulnerability":"VCID-ck23-cxn6-bbf3"},{"vulnerability":"VCID-dp6j-gnk4-rkd5"},{"vulnerability":"VCID-dsu7-jjjq-f3e1"},{"vulnerability":"VCID-f4pm-9tq5-q3ch"},{"vulnerability":"VCID-f963-qur3-2qb7"},{"vulnerability":"VCID-fber-yp9q-f7dr"},{"vulnerability":"VCID-fqbx-7xyq-fkav"},{"vulnerability":"VCID-g4ak-ertr-rya6"},{"vulnerability":"VCID-gcnj-6qb6-pbgz"},{"vulnerability":"VCID-gezz-pvpj-p3c6"},{"vulnerability":"VCID-gnna-yjv5-cya2"},{"vulnerability":"VCID-gspd-apwy-efgu"},{"vulnerability":"VCID-h2dd-7b1r-k7bs"},{"vulnerability":"VCID-h958-d3pm-kfcs"},{"vulnerability":"VCID-heyy-me7v-jyf5"},{"vulnerability":"VCID-hkk9-f78q-xqd2"},{"vulnerability":"VCID-hv3n-j8ck-1ufx"},{"vulnerability":"VCID-jmu3-5k7e-x7ch"},{"vulnerability":"VCID-jqx9-41zx-dbcy"},{"vulnerability":"VCID-kgcq-paqm-9ya6"},{"vulnerability":"VCID-kpze-14jy-xud9"},{"vulnerability":"VCID-kqbk-4q4z-nkec"},{"vulnerability":"VCID-kuq7-h4ex-tkgc"},{"vulnerability":"VCID-m3nf-1qbv-d3dj"},{"vulnerability":"VCID-m43j-8zeh-47gz"},{"vulnerability":"VCID-mc8q-fhyf-ekfj"},{"vulnerability":"VCID-mhud-kq57-nka3"},{"vulnerability":"VCID-mqk6-z77g-bfdv"},{"vulnerability":"VCID-n61z-6v8a-hygf"},{"vulnerability":"VCID-ne8w-dpjw-7qf1"},{"vulnerability":"VCID-nnh9-udcj-m7fv"},{"vulnerability":"VCID-npn5-rand-q3dg"},{"vulnerability":"VCID-nwxj-3ajk-rkh5"},{"vulnerability":"VCID-p1u9-66hm-47er"},{"vulnerability":"VCID-p545-vwe6-9kfr"},{"vulnerability":"VCID-pgzu-kxuj-j3fh"},{"vulnerability":"VCID-prbd-r82t-87dm"},{"vulnerability":"VCID-q6dx-uskc-y3hs"},{"vulnerability":"VCID-q9ak-qcq6-qfhy"},{"vulnerability":"VCID-qemc-8kj8-r3cd"},{"vulnerability":"VCID-re8y-zb3u-57h2"},{"vulnerability":"VCID-re9h-ze98-rbhu"},{"vulnerability":"VCID-rg5d-d8nc-9qfu"},{"vulnerability":"VCID-rkms-w15c-4yb1"},{"vulnerability":"VCID-rwgf-2pfh-ufdz"},{"vulnerability":"VCID-s49m-kyu7-vbee"},{"vulnerability":"VCID-s8h9-rdvk-9yfp"},{"vulnerability":"VCID-se8w-fv8x-tqde"},{"vulnerability":"VCID-sszj-qy2p-ebbd"},{"vulnerability":"VCID-u347-jazz-zke4"},{"vulnerability":"VCID-u7nx-p1g7-cqhw"},{"vulnerability":"VCID-uckg-j48d-efad"},{"vulnerability":"VCID-uj89-13ub-43fz"},{"vulnerability":"VCID-utpu-q2dv-m3hm"},{"vulnerability":"VCID-vbbx-pk8m-jfhd"},{"vulnerability":"VCID-w5pn-eb7y-1kdp"},{"vulnerability":"VCID-wq32-kgff-gke8"},{"vulnerability":"VCID-ww44-zmx7-47ft"},{"vulnerability":"VCID-xa4m-xpa9-v7h8"},{"vulnerability":"VCID-xhq3-ts9t-sbdy"},{"vulnerability":"VCID-xkpp-psz2-2kag"},{"vulnerability":"VCID-xp55-jxjr-zqcb"},{"vulnerability":"VCID-xwtv-48ph-6fb6"},{"vulnerability":"VCID-z41h-5mem-gfc7"},{"vulnerability":"VCID-z5qq-nwn5-tqgm"},{"vulnerability":"VCID-zdq2-dhb2-6kaq"},{"vulnerability":"VCID-zeku-t9fv-kych"},{"vulnerability":"VCID-zp3u-ukzs-ukf6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.6"}],"aliases":["GHSA-45xg-4w5x-j429"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hpju-vhzg-jyes"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15372?format=json","vulnerability_id":"VCID-m3dg-q4eg-wyfb","summary":"TYPO3 Color Picker Wizard component allows remote authenticated editors to execute arbitrary PHP code\nThe Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.","references":[{"reference_url":"http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-updates/2014-06/msg00037.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3942","reference_id":"","reference_type":"","scores":[{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63384","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63314","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63278","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63322","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63301","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.6332","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63333","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63331","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63299","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63344","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63396","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63357","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.6319","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63249","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63279","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63244","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63295","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.63313","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00442","scoring_system":"epss","scoring_elements":"0.6333","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3942"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3941"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3942"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3943"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3946"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"https://typo3.org/security/advisory/typo3-core-sa-2014-001","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/security/advisory/typo3-core-sa-2014-001"},{"reference_url":"http://www.debian.org/security/2014/dsa-2942","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2014/dsa-2942"},{"reference_url":"http://www.openwall.com/lists/oss-security/2014/06/03/2","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2014/06/03/2"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3942","reference_id":"CVE-2014-3942","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3942"},{"reference_url":"https://github.com/advisories/GHSA-55g3-fjwm-w2c8","reference_id":"GHSA-55g3-fjwm-w2c8","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-55g3-fjwm-w2c8"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/54359?format=json","purl":"pkg:composer/typo3/cms@6.1.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.9"}],"aliases":["CVE-2014-3942","GHSA-55g3-fjwm-w2c8"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m3dg-q4eg-wyfb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57974?format=json","vulnerability_id":"VCID-nsh9-8twn-6ydn","summary":"TYPO3 vulnerable to remote authenticated arbitrary code execution\nThe File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.9 and 6.1.x before 6.1.4 allows remote authenticated editors to execute arbitrary PHP code via unspecified characters in the file extension when renaming a file.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4250.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4321","reference_id":"","reference_type":"","scores":[{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65481","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65414","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65425","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65422","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65401","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65445","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.6549","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.6546","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65286","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65335","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.6536","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65325","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65377","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65388","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65407","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65394","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65366","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65402","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65413","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00485","scoring_system":"epss","scoring_elements":"0.65397","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4321"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2013-4321","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-4321"},{"reference_url":"https://typo3.org/security/advisory/typo3-core-sa-2013-003","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://typo3.org/security/advisory/typo3-core-sa-2013-003"},{"reference_url":"https://github.com/advisories/GHSA-m76j-69c2-c3m8","reference_id":"GHSA-m76j-69c2-c3m8","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-m76j-69c2-c3m8"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/84100?format=json","purl":"pkg:composer/typo3/cms@6.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.4"}],"aliases":["CVE-2013-4321","GHSA-m76j-69c2-c3m8"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nsh9-8twn-6ydn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15947?format=json","vulnerability_id":"VCID-p8m8-y53c-cubn","summary":"TYPO3 vulnerable to Information Disclosure via Content Editing Wizards component\nThe Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters.","references":[{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00028.html"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-updates/2016-08/msg00083.html"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2016-08/msg00106.html","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://lists.opensuse.org/opensuse-updates/2016-08/msg00106.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7073","reference_id":"","reference_type":"","scores":[{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50898","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.51002","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50981","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50965","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.51003","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.51009","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50988","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50934","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50942","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50904","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.5083","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50883","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50912","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50868","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50864","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50922","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50948","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50906","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.50963","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.5096","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7073"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081"},{"reference_url":"http://seclists.org/oss-sec/2013/q4/473","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/oss-sec/2013/q4/473"},{"reference_url":"http://seclists.org/oss-sec/2013/q4/487","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/oss-sec/2013/q4/487"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/","reference_id":"","reference_type":"","scores":[],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/"},{"reference_url":"http://www.debian.org/security/2014/dsa-2834","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2014/dsa-2834"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2013-7073","reference_id":"CVE-2013-7073","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-7073"},{"reference_url":"https://github.com/advisories/GHSA-4rpv-g4gq-rh4m","reference_id":"GHSA-4rpv-g4gq-rh4m","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-4rpv-g4gq-rh4m"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/55256?format=json","purl":"pkg:composer/typo3/cms@6.1.7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.7"}],"aliases":["CVE-2013-7073","GHSA-4rpv-g4gq-rh4m"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p8m8-y53c-cubn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/55459?format=json","vulnerability_id":"VCID-vbbx-pk8m-jfhd","summary":"Typo3 Vulnerable to Cache Poisoning\n**Problem Description:** A request URL with arbitrary arguments, but still pointing to the home page of  a TYPO3 installation can be cached if the configuration option `config.prefixLocalAnchors` is used with the values \"all\" or \"cached\". The impact of this vulnerability is that unfamiliar looking links to the home page can end up in the cache, which leads to a reload of the page in the browser when section links are followed by web page visitors, instead of just directly jumping to the requested section of the page. TYPO3 versions 4.6.x and higher are only affected if the homepage is not a shortcut to a different page.\n\n**Solution:** Removing the configuration options `config.prefixLocalAnchors` (and optionally also config.baseUrl) in favor of `config.absRefPrefix`\n\n**Credits:** Thanks to Gernot Leitgab who discovered and reported the vulnerability.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9509","reference_id":"","reference_type":"","scores":[{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70493","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70426","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70466","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70498","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70467","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70296","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70309","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70326","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70304","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70349","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70364","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70388","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70372","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70358","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70401","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70411","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70392","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70442","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00633","scoring_system":"epss","scoring_elements":"0.70452","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9509"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2014-9509","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:P/I:P/A:P"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2014-9509"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003","reference_id":"","reference_type":"","scores":[{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/","reference_id":"","reference_type":"","scores":[],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-003/"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.32:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.33:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.34:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.35:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.36:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.37:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.38:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.10:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.11:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.12:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.13:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.14:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.15:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.16:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.17:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.18:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.5:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.6:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.6.9:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.17:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.18:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.19:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.20:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.12:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.13:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.14:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.1.9:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*"},{"reference_url":"https://github.com/advisories/GHSA-5479-gqqr-f9gj","reference_id":"GHSA-5479-gqqr-f9gj","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5479-gqqr-f9gj"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/82551?format=json","purl":"pkg:composer/typo3/cms@6.1.13","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.13"},{"url":"http://public2.vulnerablecode.io/api/packages/20922?format=json","purl":"pkg:composer/typo3/cms@6.2.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1bnd-6xsq-nbec"},{"vulnerability":"VCID-1jcy-nx8g-z3d3"},{"vulnerability":"VCID-1ng4-5tkh-g7h5"},{"vulnerability":"VCID-1qjx-grvf-y7bk"},{"vulnerability":"VCID-25t3-1sm6-3kdn"},{"vulnerability":"VCID-2rhx-afay-97da"},{"vulnerability":"VCID-37wu-bjfj-k7eg"},{"vulnerability":"VCID-3m2z-stmy-u7hm"},{"vulnerability":"VCID-3m53-kkk2-j7c2"},{"vulnerability":"VCID-435j-f3yx-9yep"},{"vulnerability":"VCID-48jz-wwt8-33hx"},{"vulnerability":"VCID-4etp-u4pt-v7hm"},{"vulnerability":"VCID-51ba-3ag9-rucn"},{"vulnerability":"VCID-5jgb-dsyx-hyb4"},{"vulnerability":"VCID-5ppt-avmb-cqb2"},{"vulnerability":"VCID-6gms-w48j-4ffh"},{"vulnerability":"VCID-6pvx-1qan-ukef"},{"vulnerability":"VCID-6spw-66jg-syb1"},{"vulnerability":"VCID-6wsa-4ywc-8fh4"},{"vulnerability":"VCID-7d1g-j3k5-gub8"},{"vulnerability":"VCID-7zx9-8afq-y3hc"},{"vulnerability":"VCID-8jp8-a363-67be"},{"vulnerability":"VCID-b5ht-z6zp-pbht"},{"vulnerability":"VCID-b715-6z6c-qqar"},{"vulnerability":"VCID-bck9-34jp-6ydx"},{"vulnerability":"VCID-buax-rz7x-r7c2"},{"vulnerability":"VCID-c6zq-cfg5-u7d9"},{"vulnerability":"VCID-cczn-x8q7-k7ba"},{"vulnerability":"VCID-cjgc-q6p5-2ydc"},{"vulnerability":"VCID-ck23-cxn6-bbf3"},{"vulnerability":"VCID-dp6j-gnk4-rkd5"},{"vulnerability":"VCID-dsu7-jjjq-f3e1"},{"vulnerability":"VCID-f4pm-9tq5-q3ch"},{"vulnerability":"VCID-f963-qur3-2qb7"},{"vulnerability":"VCID-fber-yp9q-f7dr"},{"vulnerability":"VCID-fqbx-7xyq-fkav"},{"vulnerability":"VCID-g4ak-ertr-rya6"},{"vulnerability":"VCID-gcnj-6qb6-pbgz"},{"vulnerability":"VCID-gezz-pvpj-p3c6"},{"vulnerability":"VCID-gnna-yjv5-cya2"},{"vulnerability":"VCID-gspd-apwy-efgu"},{"vulnerability":"VCID-h2dd-7b1r-k7bs"},{"vulnerability":"VCID-h958-d3pm-kfcs"},{"vulnerability":"VCID-heyy-me7v-jyf5"},{"vulnerability":"VCID-hkk9-f78q-xqd2"},{"vulnerability":"VCID-hv3n-j8ck-1ufx"},{"vulnerability":"VCID-jmu3-5k7e-x7ch"},{"vulnerability":"VCID-jqx9-41zx-dbcy"},{"vulnerability":"VCID-kgcq-paqm-9ya6"},{"vulnerability":"VCID-kpze-14jy-xud9"},{"vulnerability":"VCID-kqbk-4q4z-nkec"},{"vulnerability":"VCID-kuq7-h4ex-tkgc"},{"vulnerability":"VCID-m3nf-1qbv-d3dj"},{"vulnerability":"VCID-m43j-8zeh-47gz"},{"vulnerability":"VCID-mc8q-fhyf-ekfj"},{"vulnerability":"VCID-mhud-kq57-nka3"},{"vulnerability":"VCID-mqk6-z77g-bfdv"},{"vulnerability":"VCID-n61z-6v8a-hygf"},{"vulnerability":"VCID-ne8w-dpjw-7qf1"},{"vulnerability":"VCID-nnh9-udcj-m7fv"},{"vulnerability":"VCID-npn5-rand-q3dg"},{"vulnerability":"VCID-nwxj-3ajk-rkh5"},{"vulnerability":"VCID-p1u9-66hm-47er"},{"vulnerability":"VCID-p545-vwe6-9kfr"},{"vulnerability":"VCID-pgzu-kxuj-j3fh"},{"vulnerability":"VCID-prbd-r82t-87dm"},{"vulnerability":"VCID-q6dx-uskc-y3hs"},{"vulnerability":"VCID-q9ak-qcq6-qfhy"},{"vulnerability":"VCID-qemc-8kj8-r3cd"},{"vulnerability":"VCID-re8y-zb3u-57h2"},{"vulnerability":"VCID-re9h-ze98-rbhu"},{"vulnerability":"VCID-rg5d-d8nc-9qfu"},{"vulnerability":"VCID-rkms-w15c-4yb1"},{"vulnerability":"VCID-rwgf-2pfh-ufdz"},{"vulnerability":"VCID-s49m-kyu7-vbee"},{"vulnerability":"VCID-s8h9-rdvk-9yfp"},{"vulnerability":"VCID-se8w-fv8x-tqde"},{"vulnerability":"VCID-sszj-qy2p-ebbd"},{"vulnerability":"VCID-u347-jazz-zke4"},{"vulnerability":"VCID-u7nx-p1g7-cqhw"},{"vulnerability":"VCID-uckg-j48d-efad"},{"vulnerability":"VCID-uj89-13ub-43fz"},{"vulnerability":"VCID-utpu-q2dv-m3hm"},{"vulnerability":"VCID-w5pn-eb7y-1kdp"},{"vulnerability":"VCID-wq32-kgff-gke8"},{"vulnerability":"VCID-ww44-zmx7-47ft"},{"vulnerability":"VCID-xa4m-xpa9-v7h8"},{"vulnerability":"VCID-xhq3-ts9t-sbdy"},{"vulnerability":"VCID-xkpp-psz2-2kag"},{"vulnerability":"VCID-xwtv-48ph-6fb6"},{"vulnerability":"VCID-z41h-5mem-gfc7"},{"vulnerability":"VCID-z5qq-nwn5-tqgm"},{"vulnerability":"VCID-zdq2-dhb2-6kaq"},{"vulnerability":"VCID-zeku-t9fv-kych"},{"vulnerability":"VCID-zp3u-ukzs-ukf6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.2.9"},{"url":"http://public2.vulnerablecode.io/api/packages/20923?format=json","purl":"pkg:composer/typo3/cms@7.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ng4-5tkh-g7h5"},{"vulnerability":"VCID-28bf-jvah-zkhw"},{"vulnerability":"VCID-2rhx-afay-97da"},{"vulnerability":"VCID-37wu-bjfj-k7eg"},{"vulnerability":"VCID-4etp-u4pt-v7hm"},{"vulnerability":"VCID-51ba-3ag9-rucn"},{"vulnerability":"VCID-5jgb-dsyx-hyb4"},{"vulnerability":"VCID-5paq-5frf-43ed"},{"vulnerability":"VCID-6b5q-vzs3-pkcc"},{"vulnerability":"VCID-6gms-w48j-4ffh"},{"vulnerability":"VCID-6pvx-1qan-ukef"},{"vulnerability":"VCID-6spw-66jg-syb1"},{"vulnerability":"VCID-7zx9-8afq-y3hc"},{"vulnerability":"VCID-b5ht-z6zp-pbht"},{"vulnerability":"VCID-bajy-qbwq-fufn"},{"vulnerability":"VCID-bnne-7p2q-eqd2"},{"vulnerability":"VCID-buax-rz7x-r7c2"},{"vulnerability":"VCID-bxjw-7426-gyb8"},{"vulnerability":"VCID-cczn-x8q7-k7ba"},{"vulnerability":"VCID-cjgc-q6p5-2ydc"},{"vulnerability":"VCID-ck23-cxn6-bbf3"},{"vulnerability":"VCID-dbrh-t8zx-nkd9"},{"vulnerability":"VCID-dm97-51uu-r7gw"},{"vulnerability":"VCID-dsu7-jjjq-f3e1"},{"vulnerability":"VCID-ehzg-bzrd-kbcc"},{"vulnerability":"VCID-f4pm-9tq5-q3ch"},{"vulnerability":"VCID-gcnj-6qb6-pbgz"},{"vulnerability":"VCID-h958-d3pm-kfcs"},{"vulnerability":"VCID-jmu3-5k7e-x7ch"},{"vulnerability":"VCID-jqx9-41zx-dbcy"},{"vulnerability":"VCID-kgcq-paqm-9ya6"},{"vulnerability":"VCID-kpze-14jy-xud9"},{"vulnerability":"VCID-kqbk-4q4z-nkec"},{"vulnerability":"VCID-mnz3-rj21-67ad"},{"vulnerability":"VCID-n15v-ta9h-6ffb"},{"vulnerability":"VCID-n78p-x7hh-gqcf"},{"vulnerability":"VCID-ne8w-dpjw-7qf1"},{"vulnerability":"VCID-nwxj-3ajk-rkh5"},{"vulnerability":"VCID-pgzu-kxuj-j3fh"},{"vulnerability":"VCID-pk8d-8u15-5bfq"},{"vulnerability":"VCID-q6dx-uskc-y3hs"},{"vulnerability":"VCID-qemc-8kj8-r3cd"},{"vulnerability":"VCID-rdrs-mhaw-b3ge"},{"vulnerability":"VCID-re9h-ze98-rbhu"},{"vulnerability":"VCID-rwgf-2pfh-ufdz"},{"vulnerability":"VCID-se8w-fv8x-tqde"},{"vulnerability":"VCID-sr3p-pdxy-4yhu"},{"vulnerability":"VCID-t3jn-vwbx-u7cr"},{"vulnerability":"VCID-tmrt-6fxw-5ugh"},{"vulnerability":"VCID-tw1y-t4qj-j3d1"},{"vulnerability":"VCID-vndb-w8e1-4ugv"},{"vulnerability":"VCID-wr5t-xqnn-gkcj"},{"vulnerability":"VCID-ww44-zmx7-47ft"},{"vulnerability":"VCID-wxps-mnue-6bbh"},{"vulnerability":"VCID-xa4m-xpa9-v7h8"},{"vulnerability":"VCID-xhq3-ts9t-sbdy"},{"vulnerability":"VCID-xkpp-psz2-2kag"},{"vulnerability":"VCID-xqew-bx7v-1qfk"},{"vulnerability":"VCID-y32z-2d3f-gkgw"},{"vulnerability":"VCID-zdq2-dhb2-6kaq"},{"vulnerability":"VCID-zspb-bd6j-wyd2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@7.0.2"}],"aliases":["CVE-2014-9509","GHSA-5479-gqqr-f9gj"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vbbx-pk8m-jfhd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/55950?format=json","vulnerability_id":"VCID-y9d1-wwne-hba5","summary":"several","references":[{"reference_url":"http://osvdb.org/100881","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://osvdb.org/100881"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7074","reference_id":"","reference_type":"","scores":[{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56326","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56333","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56355","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56336","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56387","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56393","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56403","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56379","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56361","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56394","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56363","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56285","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56306","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56284","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56237","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56287","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.5635","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56302","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00335","scoring_system":"epss","scoring_elements":"0.56223","published_at":"2026-04-01T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7074"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081"},{"reference_url":"http://seclists.org/oss-sec/2013/q4/473","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/oss-sec/2013/q4/473"},{"reference_url":"http://seclists.org/oss-sec/2013/q4/487","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/oss-sec/2013/q4/487"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/89620","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/89620"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2013-7074","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-7074"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004"},{"reference_url":"http://www.debian.org/security/2014/dsa-2834","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2014/dsa-2834"},{"reference_url":"http://www.securityfocus.com/bid/64245","reference_id":"","reference_type":"","scores":[{"value":"3.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securityfocus.com/bid/64245"},{"reference_url":"https://github.com/advisories/GHSA-r8m7-792j-5jvq","reference_id":"GHSA-r8m7-792j-5jvq","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-r8m7-792j-5jvq"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/55256?format=json","purl":"pkg:composer/typo3/cms@6.1.7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.7"}],"aliases":["CVE-2013-7074","GHSA-r8m7-792j-5jvq"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y9d1-wwne-hba5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/55521?format=json","vulnerability_id":"VCID-zqqe-vew2-nbfk","summary":"TYPO3 vulnerable to Insecure Unserialize via Content Editing Wizards component\nThe Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbitrary PHP objects, delete arbitrary files, and possibly have other unspecified impacts via an unspecified parameter, related to a \"missing signature.\"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7075","reference_id":"","reference_type":"","scores":[{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61252","published_at":"2026-05-12T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61183","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61223","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61228","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61209","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61199","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61214","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61208","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61157","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61206","published_at":"2026-05-07T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61264","published_at":"2026-05-09T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61226","published_at":"2026-05-11T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.6106","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61138","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61166","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61132","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.6118","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61195","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61215","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00408","scoring_system":"epss","scoring_elements":"0.61202","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7075"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7073"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7074"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7075"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7076"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7078"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7081"},{"reference_url":"http://seclists.org/oss-sec/2013/q4/473","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://seclists.org/oss-sec/2013/q4/473"},{"reference_url":"https://github.com/TYPO3/typo3","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/TYPO3/typo3"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2013-7075","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-7075"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004"},{"reference_url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/","reference_id":"","reference_type":"","scores":[],"url":"http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/"},{"reference_url":"http://www.debian.org/security/2014/dsa-2834","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2014/dsa-2834"},{"reference_url":"https://github.com/advisories/GHSA-47ww-mq32-g4xw","reference_id":"GHSA-47ww-mq32-g4xw","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-47ww-mq32-g4xw"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/55256?format=json","purl":"pkg:composer/typo3/cms@6.1.7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.7"}],"aliases":["CVE-2013-7075","GHSA-47ww-mq32-g4xw"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zqqe-vew2-nbfk"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@6.1.0"}