Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / typo3

typo3

346 tracked vulnerabilities.

CVE-2011-4900 MEDIUM

TYPO3 < 4.5.4 - Information Disclosure in Backend

CVE-2011-4632 MEDIUM

TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via Flash Message

CVE-2011-4631 MEDIUM

TYPO3 < 4.3.12 - Cross-Site Scripting in System Extension Recycler

CVE-2011-4630 MEDIUM

TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Cross-Site Scripting via Browse Links Wizard

CVE-2011-4629 MEDIUM

TYPO3 < 4.3.12 - Cross-Site Scripting via Admin Panel

CVE-2011-4628 CRITICAL

TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Authentication Bypass

CVE-2011-4627 MEDIUM

TYPO3 < 4.3.12, 4.4.x < 4.4.9, 4.5.x < 4.5.4 - Information Disclosure

CVE-2011-4626 MEDIUM

TYPO3 < 4.3.12 - Cross-Site Scripting via JSwindow Property in Typolink Function

TYPO3 4.5.x-4.5.9 4.6.x-4.6.2 4.7 - Remote Code Execution via BACK_PATH Parameter

CVE-2010-3674 MEDIUM

TYPO3 < 4.4.1 - Cross-Site Scripting in Frontend Search Box

CVE-2010-3673 MEDIUM

TYPO3 < 4.2.13 - Information Disclosure in HTML Mailing API

CVE-2010-3672 MEDIUM

TYPO3 < 4.3.4 and 4.4.x < 4.4.1 - Cross-Site Scripting in Extbase Textarea View Helper

CVE-2010-3671 MEDIUM

TYPO3 <4.1.14, <4.2.13, <4.3.4, <4.4.1 - Info Disclosure

CVE-2010-3670 MEDIUM

TYPO3 < 4.3.4 and 4.4.x < 4.4.1 - Insecure Randomness in Password Reset Hash Generation

CVE-2010-3669 MEDIUM

TYPO3 4.2.0-4.2.12 - Cross-Site Scripting and Open Redirect in Frontend Login Box

CVE-2010-3668 HIGH

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - Header Injection via Secure Download Feature

CVE-2010-3667 MEDIUM

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - Spam Abuse via Native Form Content Element

CVE-2010-3666 MEDIUM

TYPO3 <4.1.14, <4.2.13, <4.3.4, <4.4.1 - Info Disclosure

CVE-2010-3665 MEDIUM

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - Cross-Site Scripting in Extension Manager

CVE-2010-3664 MEDIUM

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - Information Disclosure in Backend

CVE-2010-3663 HIGH

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - Remote Code Execution

CVE-2010-3662 HIGH

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - SQL Injection

CVE-2010-3661 MEDIUM

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - Open Redirect in Backend

CVE-2010-3660 MEDIUM

TYPO3 < 4.1.14, 4.2.x < 4.2.13, 4.3.x < 4.3.4, 4.4.x < 4.4.1 - Cross-Site Scripting in Backend

CVE-2010-3659 MEDIUM

TYPO3 CMS 4.1.0-4.1.13, 4.2.0-4.2.12, 4.3.0-4.3.3, 4.4.0 - Authenticated Cross-Site Scripting

Previous Page 9 of 14 Next

Products

typo3 218 cms 116 cms-core 85 cms-backend 22 cms-install 6 cms-form 4 cms-frontend 4 dam_frontend_extension 4 html-sanitizer 4 html_sanitizer 4 wec_discussion_forum 4 Extension "Faceted Search" 3 pdf_generator_2_extension 3 Extension "Mailqueue" 2 address_directory 2 air_filemanager 2 beuserswitch 2 cms-beuser 2 cms-dashboard 2 cms-recycler 2 cms-workspaces 2 commerce_extension 2 eluna_page_comments_extension 2 ns backup extension 2 phar-stream-wrapper 2 pharstreamwrapper 2 sql_frontend_extension 2 sr feuser register extension 2 sr_feuser_register_extension 2 terminal 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy