typo3
361 tracked vulnerabilities.
CVE-2009-4392
TYPO3 xds_staff <0.0.3 - SQL Injection
Dec 22, 2009
EPSS 0.01
CVE-2009-3636
TYPO3 < 4.0.12 - Cross-Site Scripting in Install Tool
Nov 02, 2009
EPSS 0.02
CVE-2009-3635
TYPO3 < 4.0.12, 4.1.x < 4.1.13, 4.2.x < 4.2.10, 4.3.x < 4.3beta2 - Improper Authentication via Install Tool
Nov 02, 2009
EPSS 0.02
CVE-2009-3634
TYPO3 4.2.0-4.2.6 - Cross-Site Scripting in Frontend Login Box
Nov 02, 2009
EPSS 0.02
CVE-2009-3633
TYPO3 < 4.0.12 - Cross-Site Scripting via t3lib_div::quoteJSvalue API Function
Nov 02, 2009
EPSS 0.01
CVE-2009-3632
TYPO3 < 4.0.13, 4.1.x < 4.1.13, 4.2.x < 4.2.10, 4.3.x < 4.3beta2 - Authenticated SQL Injection
Nov 02, 2009
EPSS 0.02
CVE-2009-3631
TYPO3 < 4.0.12, 4.1.x < 4.1.13, 4.2.x < 4.2.10, 4.3.x < 4.3beta2 - Authenticated Command Injection via Filename
Nov 02, 2009
EPSS 0.03
CVE-2009-3630
TYPO3 <4.0.13, <4.1.13, <4.2.10, <4.3beta2 - Frame Hijacking
Nov 02, 2009
EPSS 0.02
CVE-2009-3629
TYPO3 < 4.0.13, 4.1.x < 4.1.13, 4.2.x < 4.2.10, 4.3.x < 4.3beta2 - Authenticated Cross-Site Scripting
Nov 02, 2009
EPSS 0.02
CVE-2009-3628
TYPO3 < 4.0.12, 4.1.x < 4.1.13, 4.2.x < 4.2.10, 4.3.x < 4.3beta2 - Encryption Key Exposure
Nov 02, 2009
EPSS 0.01
CVE-2009-0816
TYPO3 3.3.x-3.8.x, 4.0-4.0.11, 4.1-4.1.9, 4.2-4.2.5, 4.3alpha1 - Cross-Site Scripting in Backend User Interface
Mar 05, 2009
EPSS 0.01
CVE-2009-0815
TYPO3 <4.0.12-4.3alpha1 - Info Disclosure
Mar 05, 2009
EPSS 0.42
CVE-2009-0258
TYPO3 4.0.0-4.0.9 4.1.0-4.1.7 4.2.0-4.2.3 - Remote Code Execution via Indexed Search Engine Filename
Jan 22, 2009
EPSS 0.03
CVE-2009-0257
TYPO3 4.0.0-4.0.9, 4.1.0-4.1.7, 4.2.0-4.2.3 - Cross-Site Scripting
Jan 22, 2009
EPSS 0.02
CVE-2009-0256
TYPO3 4.0.0-4.0.9 4.1.0-4.1.7 4.2.0-4.2.3 - Session Fixation via Frontend and Backend Authentication
Jan 22, 2009
EPSS 0.02
CVE-2009-0255
HIGH
TYPO3 4.0.0-4.0.9 4.1.0-4.1.7 4.2.0-4.2.3 - Use of Insufficiently Random Values in System Extension Install Tool
Jan 22, 2009
CVSS 7.5
EPSS 0.09
CVE-2008-6699
TYPO3 tjs_reslib < 0.1.0 - Cross-Site Scripting
Apr 10, 2009
EPSS 0.01
CVE-2008-6690
TYPO3 nd_antispam <1.0.3 - Remote Configuration Modification
Apr 10, 2009
EPSS 0.01
CVE-2008-6630
wt_gallery < 2.5.0 - Path Traversal
Apr 07, 2009
EPSS 0.02
CVE-2008-6595
pmk_rssnewsexport_extension - SQL Injection
Apr 03, 2009
EPSS 0.01
CVE-2008-6459
TYPO3 auto BE User Registration < 0.0.2 - SQL Injection
Mar 13, 2009
EPSS 0.01
CVE-2008-6344
TYPO3 TU-Clausthal Staff < 0.3.0 - SQL Injection
Feb 27, 2009
EPSS 0.01
CVE-2008-6343
TU-Clausthal ODIN Extension 0.0.1-0.2.0 - Cross-Site Scripting
Feb 27, 2009
EPSS 0.01
CVE-2008-6341
SB Universal Plugin < 2.0.1 - Cross-Site Scripting
Feb 27, 2009
EPSS 0.01
CVE-2008-6145
WEC Discussion Forum < 1.7.0 - SQL Injection
Feb 16, 2009
EPSS 0.01
Products
typo3 218
cms 116
cms-core 98
cms-backend 24
TYPO3 CMS 14
cms-form 7
cms-install 6
html-sanitizer 6
cms-frontend 4
dam_frontend_extension 4
html_sanitizer 4
wec_discussion_forum 4
Extension "Faceted Search" 3
cms-recycler 3
pdf_generator_2_extension 3
Extension "Mailqueue" 2
HTML Sanitizer 2
address_directory 2
air_filemanager 2
beuserswitch 2
cms-beuser 2
cms-dashboard 2
cms-indexed-search 2
cms-workspaces 2
commerce_extension 2
eluna_page_comments_extension 2
ns backup extension 2
phar-stream-wrapper 2
pharstreamwrapper 2
sql_frontend_extension 2
Quick Filters