Typo3 Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Content Management System94
Photo Gallery Software6
Anti-Spam Software2
Calendar Software2
Database Administration Software2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

TYPO3 CMS8
TYPO3 WEC Discussion Forum6
TYPO3 Dam Frontend Extension6
TYPO3 Ws Ecard4
TYPO3 Sr Feuser Register Extension4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix44
Temporary Fix0
Workaround0
Unavailable24
Not Defined40

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High32
Functional0
Proof-of-Concept18
Unproven22
Not Defined36

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical0
Local0
Adjacent0
Network108

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High0
Low6
None102

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required28
None80

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤20
≤30
≤42
≤528
≤614
≤72
≤858
≤90
≤104

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤534
≤610
≤734
≤824
≤94
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤20
≤30
≤44
≤528
≤614
≤72
≤856
≤90
≤104

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤82
≤94
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤10
≤20
≤30
≤40
≤50
≤62
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k2
<2k34
<5k70
<10k2
<25k0
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k108
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

🔴 CTI Activities

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Affected Products (76): Address Directory (2), Air Filemanager (2), Another Backend Login (1), Bb Simplejobs (1), Brainstorming (1), Branchenbuch Extension (1), CMS (13), Cms Poll System Extension (1), Codeon Petition Extension (1), Commerce extension (2), Dam Frontend Extension (4), Dictionary Extension (1), Dl3 Tt News Alerts (1), Econda Plugin (1), Eluna Page Comments Extension (2), File List Extension (1), Flow (1), Fluid (1), Freecap Captcha Extension (1), Frontend Users View (1), Fsmi People (1), Industry Database Extension (1), JobControl (1), Job Reports (1), Kb Unpack Extension (1), Kiddog Mysqldumper (1), Kj Imagelightbox2 (1), M1 Intern (1), Majordomo (1), Mannschaftsliste (1), Mimi Tipfriends (1), Mm Whtppr (1), Nd Antispam (1), Neos (1), News Calendar Extension (1), Packman Extension (1), Page Improvements (1), Pb Clanlist (1), Pdf Generator 2 Extension (3), Pinboard extension (1), Pmk Rssnewsexport Extension (1), Rlmp Eventdb (1), SB Universal Plugin (1), Sbanner (1), Secure Directory (1), Send A Card (1), Sg Zfelib (1), Sk Simplegallery (2), Skt Eurocalc (1), Sql Frontend Extension (2), Sr Feuser Register Extension (2), Support View Extension (1), T3m Affiliate (1), TU-Clausthal ODIN (1), TU-Clausthal Staff (1), Terminal (2), Tjs Reslib (1), Toi Category (2), Vd Gemomap (1), Vm19 Userlinks (1), WEC Discussion Forum (4), WT Gallery (1), Wir Ber Uns Extension (1), Ws Ecard (2), Ws Gallery (1), Wt Gallery (1), XDS Staff (1), Zak Store Management (1), advCalendar extension (1), aeurltool (1), autobeuser (1), beuserswitch (2), mjseventpro (1), phpMyAdmin (1), simplesurvey (1), ttpedit (1)

PublishedBaseTempVulnerabilityProdExpRemEPSSCTICVE
12/13/20225.25.1TYPO3 CMS cross site scriptingContent Management SystemNot DefinedOfficial Fix0.000680.00CVE-2022-23499
12/13/20225.75.7TYPO3 CMS Page Error denial of serviceContent Management SystemNot DefinedOfficial Fix0.000780.00CVE-2022-23500
12/13/20225.85.7TYPO3 CMS Frontend Login improper authenticationContent Management SystemNot DefinedOfficial Fix0.000660.00CVE-2022-23501
12/13/20225.95.7TYPO3 CMS Password Reset session expirationContent Management SystemNot DefinedOfficial Fix0.000510.00CVE-2022-23502
12/13/20224.44.4TYPO3 CMS YAML Placeholder Expression information disclosureContent Management SystemNot DefinedOfficial Fix0.000880.00CVE-2022-23504
12/13/20225.04.8TYPO3 CMS Form Framework code injectionContent Management SystemNot DefinedOfficial Fix0.000770.02CVE-2022-23503
11/18/20205.24.9TYPO3 Fluid cross site scriptingContent Management SystemNot DefinedOfficial Fix0.001030.03CVE-2020-26216
07/29/20206.86.0TYPO3 CMS LocalConfiguration.php information disclosureContent Management SystemNot DefinedOfficial Fix0.009440.02CVE-2020-15099
07/29/20207.56.6TYPO3 CMS Checksum input validationContent Management SystemNot DefinedOfficial Fix0.003180.00CVE-2020-15098
05/14/20205.75.0TYPO3 CMS Backend User Interface cross-site request forgeryContent Management SystemNot DefinedOfficial Fix0.000700.02CVE-2020-11069
05/14/20207.56.6TYPO3 CMS deserializationContent Management SystemNot DefinedOfficial Fix0.004820.00CVE-2020-11067
05/14/20207.66.7TYPO3 CMS unserialize dynamically-determined object attributesContent Management SystemNot DefinedOfficial Fix0.001080.00CVE-2020-11066
10/23/20174.44.3TYPO3 CMS Extension Manager cross site scriptingContent Management SystemNot DefinedOfficial Fix0.001340.00CVE-2010-3659
03/17/20174.54.5TYPO3 CMS information disclosureContent Management SystemNot DefinedNot Defined0.002310.02CVE-2017-6370
04/01/20155.45.2TYPO3 Neos access controlContent Management SystemNot DefinedOfficial Fix0.000970.04CVE-2015-2821
12/20/20134.34.1TYPO3 Flow Error Message cross site scriptingContent Management SystemNot DefinedOfficial Fix0.002200.00CVE-2013-7082
02/14/20124.34.3TYPO3 aeurltool cross site scriptingContent Management SystemNot DefinedNot Defined0.001360.00CVE-2012-1086
02/14/20125.35.3TYPO3 beuserswitch information disclosureContent Management SystemNot DefinedNot Defined0.003580.00CVE-2012-1085
02/14/20124.34.3TYPO3 beuserswitch cross site scriptingContent Management SystemNot DefinedNot Defined0.002200.00CVE-2012-1084
02/14/20126.36.3TYPO3 Terminal cross-site request forgeryContent Management SystemNot DefinedNot Defined0.001090.00CVE-2012-1083
02/14/20123.53.5TYPO3 Terminal cross site scriptingContent Management SystemNot DefinedNot Defined0.000920.00CVE-2012-1082
02/14/20124.34.3Typo3 Skt Eurocalc cross site scriptingContent Management SystemNot DefinedNot Defined0.001360.00CVE-2012-1080
02/14/20127.36.4TYPO3 Mm Whtppr sql injectionContent Management SystemUnprovenOfficial Fix0.001350.02CVE-2012-1074
02/14/20124.33.8TYPO3 Toi Category cross site scriptingContent Management SystemUnprovenOfficial Fix0.002200.00CVE-2012-1073
02/14/20127.36.4TYPO3 Toi Category sql injectionContent Management SystemUnprovenOfficial Fix0.001350.00CVE-2012-1072

82 more entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 82 results.

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!