typo3
361 tracked vulnerabilities.
CVE-2012-2112
TYPO3 4.4.0-4.4.14, 4.5.0-4.5.14, 4.6.0-4.6.7, 4.7 - Cross-Site Scripting via Exception Handler
Aug 27, 2012
EPSS 0.01
CVE-2012-1086
TYPO3 aeurltool 0.1.0 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1085
TYPO3 beuserswitch <0.0.1 - Info Disclosure
Feb 14, 2012
EPSS 0.01
CVE-2012-1084
TYPO3 BE User Switch 0.0.1 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1083
TYPO3 Terminal < 0.3.2 - Cross-Site Request Forgery
Feb 14, 2012
EPSS 0.01
CVE-2012-1082
Terminal PHP Shell < 0.3.2 - Authenticated Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1080
skt_eurocalc 0.0.1 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1074
TYPO3 mm_whtppr <0.0.4 - SQL Injection
Feb 14, 2012
EPSS 0.01
CVE-2012-1073
TYPO3 toi_category < 0.6.0 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1072
TYPO3 toi_category <0.6.0 - SQL Injection
Feb 14, 2012
EPSS 0.01
CVE-2011-3583
CRITICAL
Typo3 4.5.0-4.5.5 - SQL Injection via Prepared Statement Parameter Binding
Nov 26, 2019
CVSS 9.8
EPSS 0.01
CVE-2011-4904
MEDIUM
TYPO3 < 4.4.9 and 4.5.x < 4.5.4 - Unauthenticated Information Disclosure via ExtDirect Endpoint
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4903
MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via RemoveXSS Function
Nov 06, 2019
CVSS 6.1
EPSS 0.01
CVE-2011-4902
MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Arbitrary File Deletion
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4901
MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Unauthenticated Database Information Disclosure
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4900
MEDIUM
TYPO3 < 4.5.4 - Information Disclosure in Backend
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4632
MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via Flash Message
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4631
MEDIUM
TYPO3 < 4.3.12 - Cross-Site Scripting in System Extension Recycler
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4630
MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via Browse Links Wizard
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4629
MEDIUM
TYPO3 < 4.3.12 - Cross-Site Scripting via Admin Panel
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4628
CRITICAL
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Authentication Bypass
Nov 06, 2019
CVSS 9.8
EPSS 0.02
CVE-2011-4627
MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Information Disclosure
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4626
MEDIUM
TYPO3 < 4.3.12 - Cross-Site Scripting via JSwindow Property in Typolink Function
Nov 06, 2019
CVSS 6.1
EPSS 0.01
CVE-2011-4614
TYPO3 4.5.x-4.5.9 4.6.x-4.6.2 4.7 - Remote Code Execution via BACK_PATH Parameter
Feb 18, 2012
EPSS 0.06
CVE-2010-3674
MEDIUM
TYPO3 < 4.4.1 - Cross-Site Scripting in Frontend Search Box
Nov 05, 2019
CVSS 6.1
EPSS 0.01
Products
typo3 218
cms 116
cms-core 98
cms-backend 24
TYPO3 CMS 14
cms-form 7
cms-install 6
html-sanitizer 6
cms-frontend 4
dam_frontend_extension 4
html_sanitizer 4
wec_discussion_forum 4
Extension "Faceted Search" 3
cms-recycler 3
pdf_generator_2_extension 3
Extension "Mailqueue" 2
HTML Sanitizer 2
address_directory 2
air_filemanager 2
beuserswitch 2
cms-beuser 2
cms-dashboard 2
cms-indexed-search 2
cms-workspaces 2
commerce_extension 2
eluna_page_comments_extension 2
ns backup extension 2
phar-stream-wrapper 2
pharstreamwrapper 2
sql_frontend_extension 2
Quick Filters