Search for vulnerabilities
Vulnerability details: VCID-gwuv-8aky-fydp
Vulnerability ID VCID-gwuv-8aky-fydp
Aliases CVE-2013-7077
GHSA-5cmc-r23m-hvrr
Summary TYPO3 Cross-site scripting (XSS) vulnerability in the Backend User Administration Module Cross-site scripting (XSS) vulnerability in the Backend User Administration Module in TYPO3 6.0.x before 6.0.12 and 6.1.x before 6.1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (3)
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.55232
EPSS Score 0.00329
Published At June 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-01T12:29:40.132275+00:00 GithubOSV Importer Import https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-5cmc-r23m-hvrr/GHSA-5cmc-r23m-hvrr.json 36.1.3