typo3

361 tracked vulnerabilities.

CVE-2012-2112
TYPO3 4.4.0-4.4.14, 4.5.0-4.5.14, 4.6.0-4.6.7, 4.7 - Cross-Site Scripting via Exception Handler
Aug 27, 2012
EPSS 0.01
CVE-2012-1086
TYPO3 aeurltool 0.1.0 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1085
TYPO3 beuserswitch <0.0.1 - Info Disclosure
Feb 14, 2012
EPSS 0.01
CVE-2012-1084
TYPO3 BE User Switch 0.0.1 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1083
TYPO3 Terminal < 0.3.2 - Cross-Site Request Forgery
Feb 14, 2012
EPSS 0.01
CVE-2012-1082
Terminal PHP Shell < 0.3.2 - Authenticated Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1080
skt_eurocalc 0.0.1 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1074
TYPO3 mm_whtppr <0.0.4 - SQL Injection
Feb 14, 2012
EPSS 0.01
CVE-2012-1073
TYPO3 toi_category < 0.6.0 - Cross-Site Scripting
Feb 14, 2012
EPSS 0.01
CVE-2012-1072
TYPO3 toi_category <0.6.0 - SQL Injection
Feb 14, 2012
EPSS 0.01
CVE-2011-3583 CRITICAL
Typo3 4.5.0-4.5.5 - SQL Injection via Prepared Statement Parameter Binding
Nov 26, 2019
CVSS 9.8
EPSS 0.01
CVE-2011-4904 MEDIUM
TYPO3 < 4.4.9 and 4.5.x < 4.5.4 - Unauthenticated Information Disclosure via ExtDirect Endpoint
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4903 MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via RemoveXSS Function
Nov 06, 2019
CVSS 6.1
EPSS 0.01
CVE-2011-4902 MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Arbitrary File Deletion
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4901 MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Unauthenticated Database Information Disclosure
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4900 MEDIUM
TYPO3 < 4.5.4 - Information Disclosure in Backend
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4632 MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via Flash Message
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4631 MEDIUM
TYPO3 < 4.3.12 - Cross-Site Scripting in System Extension Recycler
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4630 MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via Browse Links Wizard
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4629 MEDIUM
TYPO3 < 4.3.12 - Cross-Site Scripting via Admin Panel
Nov 06, 2019
CVSS 5.4
EPSS 0.01
CVE-2011-4628 CRITICAL
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Authentication Bypass
Nov 06, 2019
CVSS 9.8
EPSS 0.02
CVE-2011-4627 MEDIUM
TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Information Disclosure
Nov 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2011-4626 MEDIUM
TYPO3 < 4.3.12 - Cross-Site Scripting via JSwindow Property in Typolink Function
Nov 06, 2019
CVSS 6.1
EPSS 0.01
CVE-2011-4614
TYPO3 4.5.x-4.5.9 4.6.x-4.6.2 4.7 - Remote Code Execution via BACK_PATH Parameter
Feb 18, 2012
EPSS 0.06
CVE-2010-3674 MEDIUM
TYPO3 < 4.4.1 - Cross-Site Scripting in Frontend Search Box
Nov 05, 2019
CVSS 6.1
EPSS 0.01