Lucene search

[email protected]CVE-2013-5323

HistoryAug 20, 2013 - 6:14 p.m.

CVE-2013-5323

2013-08-2018:14:14

CWE-79

[email protected]

web.nvd.nist.gov

cve-2013-5323

xss

typo3

static info tables

security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

JSON

Cross-site scripting (XSS) vulnerability in the Static Info Tables (static_info_tables) extension before 2.3.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

NVD

Node

stanislas_rollandstatic_info_tablesRange≤2.0.6

stanislas_rollandstatic_info_tablesMatch1.0.0

stanislas_rollandstatic_info_tablesMatch1.1.0

stanislas_rollandstatic_info_tablesMatch1.1.1

stanislas_rollandstatic_info_tablesMatch1.2.0

stanislas_rollandstatic_info_tablesMatch1.3.0

stanislas_rollandstatic_info_tablesMatch1.4.0

stanislas_rollandstatic_info_tablesMatch1.5.0

stanislas_rollandstatic_info_tablesMatch1.6.0

stanislas_rollandstatic_info_tablesMatch1.7.0

stanislas_rollandstatic_info_tablesMatch1.8.0

stanislas_rollandstatic_info_tablesMatch2.0.0

stanislas_rollandstatic_info_tablesMatch2.0.1

stanislas_rollandstatic_info_tablesMatch2.0.2

stanislas_rollandstatic_info_tablesMatch2.0.3

stanislas_rollandstatic_info_tablesMatch2.0.4

stanislas_rollandstatic_info_tablesMatch2.0.5

AND

typo3typo3Match-

CPENameOperatorVersion
stanislas_rolland:static_info_tablesstanislas rolland static info tablesle2.0.6
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.0.0
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.1.0
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.1.1
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.2.0
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.3.0
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.4.0
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.5.0
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.6.0
stanislas_rolland:static_info_tablesstanislas rolland static info tableseq1.7.0

CPE	Name	Operator	Version
stanislas_rolland:static_info_tables	stanislas rolland static info tables	le	2.0.6
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.0.0
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.1.0
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.1.1
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.2.0
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.3.0
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.4.0
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.5.0
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.6.0
stanislas_rolland:static_info_tables	stanislas rolland static info tables	eq	1.7.0

Rows per page:

1-10 of 171

References

osvdb.org/90414

secunia.com/advisories/52283

typo3.org/extensions/repository/view/static_info_tables

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-004/

www.securityfocus.com/bid/58056

exchange.xforce.ibmcloud.com/vulnerabilities/82212

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

JSON

Related for CVE-2013-5323

nvd1 cvelist1 prion1