CVE-2012-1606 in TYPO3informazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the Backend component in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allow remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

12/03/2012

Divulgazione

04/09/2012

Moderazione

accettato

Voce

VDB-5011

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

3.5 (NVD)

EPSS

0.01613

KEV

Attività

molto basso

Settore

Hostingprovider, Agriculture, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-1606
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-1606
CVE Details	https://www.cvedetails.com/cve/CVE-2012-1606/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!