Typo3 Vulnerabilidad

Cronología

Escribe

Content Management System	102
Database Administration Software	2
Photo Gallery Software	2
Advertising Software	2

Producto

TYPO3 CMS	12
TYPO3 WEC Discussion Forum	4
TYPO3 Address Directory	4
TYPO3 Sql Frontend Extension	4
TYPO3 Eluna Page Comments Extension	4

Contramedidas

Official Fix	50
Temporary Fix	0
Workaround	0
Unavailable	16
Not Defined	42

Explotabilidad

High	38
Functional	0
Proof-of-Concept	14
Unproven	14
Not Defined	42

Vector de acceso

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	108

Autenticación

Not Defined	0
High	2
Low	10
None	96

La interacción del usuario

Not Defined	0
Required	38
None	70

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	36
≤6	10
≤7	2
≤8	56
≤9	0
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	4
≤5	36
≤6	10
≤7	30
≤8	26
≤9	2
≤10	0

VulDB

≤1	0
≤2	0
≤3	2
≤4	8
≤5	32
≤6	6
≤7	2
≤8	56
≤9	0
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	2
≤7	0
≤8	4
≤9	2
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	6
≤7	0
≤8	0
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	4
<2k	38
<5k	64
<10k	2
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	108
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (76): Address Directory (2), Air Filemanager (2), Another Backend Login (1), Bb Simplejobs (1), Brainstorming (1), Branchenbuch Extension (1), CMS (13), Cms Poll System Extension (1), Codeon Petition Extension (1), Commerce extension (2), Dam Frontend Extension (4), Dictionary Extension (1), Dl3 Tt News Alerts (1), Econda Plugin (1), Eluna Page Comments Extension (2), File List Extension (1), Flow (1), Fluid (1), Freecap Captcha Extension (1), Frontend Users View (1), Fsmi People (1), Industry Database Extension (1), JobControl (1), Job Reports (1), Kb Unpack Extension (1), Kiddog Mysqldumper (1), Kj Imagelightbox2 (1), M1 Intern (1), Majordomo (1), Mannschaftsliste (1), Mimi Tipfriends (1), Mm Whtppr (1), Nd Antispam (1), Neos (1), News Calendar Extension (1), Packman Extension (1), Page Improvements (1), Pb Clanlist (1), Pdf Generator 2 Extension (3), Pinboard extension (1), Pmk Rssnewsexport Extension (1), Rlmp Eventdb (1), SB Universal Plugin (1), Sbanner (1), Secure Directory (1), Send A Card (1), Sg Zfelib (1), Sk Simplegallery (2), Skt Eurocalc (1), Sql Frontend Extension (2), Sr Feuser Register Extension (2), Support View Extension (1), T3m Affiliate (1), TU-Clausthal ODIN (1), TU-Clausthal Staff (1), Terminal (2), Tjs Reslib (1), Toi Category (2), Vd Gemomap (1), Vm19 Userlinks (1), WEC Discussion Forum (4), WT Gallery (1), Wir Ber Uns Extension (1), Ws Ecard (2), Ws Gallery (1), Wt Gallery (1), XDS Staff (1), Zak Store Management (1), advCalendar extension (1), aeurltool (1), autobeuser (1), beuserswitch (2), mjseventpro (1), phpMyAdmin (1), simplesurvey (1), ttpedit (1)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2022-12-13	5.2	5.1	TYPO3 CMS cross site scripting	Content Management System	Not Defined	Official Fix	0.00068	0.00	CVE-2022-23499
2022-12-13	5.7	5.7	TYPO3 CMS Page Error denegación de servicio	Content Management System	Not Defined	Official Fix	0.00078	0.00	CVE-2022-23500
2022-12-13	5.8	5.7	TYPO3 CMS Frontend Login autenticación débil	Content Management System	Not Defined	Official Fix	0.00066	0.00	CVE-2022-23501
2022-12-13	5.9	5.7	TYPO3 CMS Password Reset autenticación débil	Content Management System	Not Defined	Official Fix	0.00051	0.00	CVE-2022-23502
2022-12-13	4.4	4.4	TYPO3 CMS YAML Placeholder Expression divulgación de información	Content Management System	Not Defined	Official Fix	0.00088	0.00	CVE-2022-23504
2022-12-13	5.0	4.8	TYPO3 CMS Form Framework escalada de privilegios	Content Management System	Not Defined	Official Fix	0.00077	0.02	CVE-2022-23503
2020-11-18	5.2	4.9	TYPO3 Fluid cross site scripting	Content Management System	Not Defined	Official Fix	0.00103	0.03	CVE-2020-26216
2020-07-29	6.8	6.0	TYPO3 CMS LocalConfiguration.php divulgación de información	Content Management System	Not Defined	Official Fix	0.00944	0.02	CVE-2020-15099
2020-07-29	7.5	6.6	TYPO3 CMS Checksum escalada de privilegios	Content Management System	Not Defined	Official Fix	0.00318	0.00	CVE-2020-15098
2020-05-14	5.7	5.0	TYPO3 CMS Backend User Interface cross site request forgery	Content Management System	Not Defined	Official Fix	0.00070	0.02	CVE-2020-11069
2020-05-14	7.5	6.6	TYPO3 CMS escalada de privilegios	Content Management System	Not Defined	Official Fix	0.00482	0.00	CVE-2020-11067
2020-05-14	7.6	6.7	TYPO3 CMS unserialize Remote Code Execution	Content Management System	Not Defined	Official Fix	0.00108	0.00	CVE-2020-11066
2017-10-23	4.4	4.3	TYPO3 CMS Extension Manager cross site scripting	Content Management System	Not Defined	Official Fix	0.00134	0.00	CVE-2010-3659
2017-03-17	4.5	4.5	TYPO3 CMS divulgación de información	Content Management System	Not Defined	Not Defined	0.00231	0.02	CVE-2017-6370
2015-04-01	5.4	5.2	TYPO3 Neos escalada de privilegios	Content Management System	Not Defined	Official Fix	0.00097	0.04	CVE-2015-2821
2013-12-20	4.3	4.1	TYPO3 Flow Error Message cross site scripting	Content Management System	Not Defined	Official Fix	0.00220	0.00	CVE-2013-7082
2012-02-14	4.3	4.3	TYPO3 aeurltool cross site scripting	Content Management System	Not Defined	Not Defined	0.00136	0.00	CVE-2012-1086
2012-02-14	5.3	5.3	TYPO3 beuserswitch divulgación de información	Content Management System	Not Defined	Not Defined	0.00358	0.00	CVE-2012-1085
2012-02-14	4.3	4.3	TYPO3 beuserswitch cross site scripting	Content Management System	Not Defined	Not Defined	0.00220	0.00	CVE-2012-1084
2012-02-14	6.3	6.3	TYPO3 Terminal cross site request forgery	Content Management System	Not Defined	Not Defined	0.00109	0.00	CVE-2012-1083
2012-02-14	3.5	3.5	TYPO3 Terminal cross site scripting	Content Management System	Not Defined	Not Defined	0.00092	0.00	CVE-2012-1082
2012-02-14	4.3	4.3	Typo3 Skt Eurocalc cross site scripting	Content Management System	Not Defined	Not Defined	0.00136	0.00	CVE-2012-1080
2012-02-14	7.3	6.4	TYPO3 Mm Whtppr sql injection	Content Management System	Unproven	Official Fix	0.00135	0.02	CVE-2012-1074
2012-02-14	4.3	3.8	TYPO3 Toi Category cross site scripting	Content Management System	Unproven	Official Fix	0.00220	0.00	CVE-2012-1073
2012-02-14	7.3	6.4	TYPO3 Toi Category sql injection	Content Management System	Unproven	Official Fix	0.00135	0.00	CVE-2012-1072

82 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 82 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!