Typo3 Commerce Extension Vulnerabilità

Sequenza temporale

Versione

0.8.02
0.8.12
0.8.22
0.8.32
0.8.42

Contromisure

Official Fix2
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Sfruttabilità

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined0

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network2

Autenticazione

Not Defined0
High0
Low2
None0

Interazione dell'utente

Not Defined0
Required2
None0

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤50
≤60
≤70
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤50
≤60
≤70
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤42
≤50
≤60
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k2
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k2
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

Affected Versions (30): 0.8, 0.8.1, 0.8.2, 0.8.3, 0.8.4, 0.8.5, 0.8.6, 0.8.7, 0.8.8, 0.8.9, 0.8.11, 0.8.12, 0.8.13, 0.8.14, 0.8.15, 0.8.16, 0.8.17, 0.8.18, 0.8.19, 0.8.21, 0.8.22, 0.8.23, 0.8.24, 0.8.25, 0.8.26, 0.8.27, 0.8.28, 0.8.29, 0.8.31, 0.8.32

Tipo di software: Content Management System

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
28/07/20103.53.2TYPO3 Commerce extension cross site scripting$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2009-4963
16/12/20087.36.9TYPO3 Commerce extension sql injection$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2008-5609

altre voci di Typo3

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!