Search for vulnerabilities
Vulnerability ID | VCID-gwuv-8aky-fydp |
Aliases |
CVE-2013-7077
GHSA-5cmc-r23m-hvrr |
Summary | TYPO3 Cross-site scripting (XSS) vulnerability in the Backend User Administration Module Cross-site scripting (XSS) vulnerability in the Backend User Administration Module in TYPO3 6.0.x before 6.0.12 and 6.1.x before 6.1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
Status | Published |
Exploitability | 0.5 |
Weighted Severity | 6.2 |
Risk | 3.1 |
Affected and Fixed Packages | Package Details |
System | Score | Found at |
---|---|---|
generic_textual | MODERATE | http://osvdb.org/100884 |
epss | 0.00329 | https://api.first.org/data/v1/epss?cve=CVE-2013-7077 |
epss | 0.00329 | https://api.first.org/data/v1/epss?cve=CVE-2013-7077 |
generic_textual | MODERATE | http://seclists.org/oss-sec/2013/q4/473 |
generic_textual | MODERATE | http://seclists.org/oss-sec/2013/q4/487 |
generic_textual | MODERATE | https://exchange.xforce.ibmcloud.com/vulnerabilities/89626 |
generic_textual | MODERATE | https://github.com/TYPO3-CMS/core |
generic_textual | MODERATE | https://nvd.nist.gov/vuln/detail/CVE-2013-7077 |
generic_textual | MODERATE | http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004 |
Percentile | 0.55232 |
EPSS Score | 0.00329 |
Published At | June 30, 2025, 12:55 p.m. |
Date | Actor | Action | Source | VulnerableCode Version |
---|---|---|---|---|
2025-07-01T12:29:40.132275+00:00 | GithubOSV Importer | Import | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-5cmc-r23m-hvrr/GHSA-5cmc-r23m-hvrr.json | 36.1.3 |