Lucene search
FreeBSDD9E154C9-7DE9-11ED-ADCA-080027D3A315HistoryDec 13, 2022 - 12:00 a.m.
typo3 -- multiple vulnerabilities
2022-12-1300:00:00
vuxml.freebsd.org
13
0.001 Low
EPSS
Percentile
36.5%
TYPO3 reports:
TYPO3-CORE-SA-2022-012: Denial of Service in Page Error Handling.
TYPO3-CORE-SA-2022-013: Weak Authentication in Frontend Login.
TYPO3-CORE-SA-2022-014: Insufficient Session Expiration after Password Reset.
TYPO3-CORE-SA-2022-015: Arbitrary Code Execution via Form Framework.
TYPO3-CORE-SA-2022-016: Sensitive Information Disclosure via YAML Placeholder Expressions in Site Configuration.
TYPO3-CORE-SA-2022-017: By-passing Cross-Site Scripting Protection in HTML Sanitizer.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | typo3-11-php81 | < 11.5.20 | UNKNOWN |
| FreeBSD | any | noarch | typo3-12-php81 | < 12.1.2 | UNKNOWN |
Related
nessus
nessus
prion
prion
Authentication flaw
2022-12-14 08:15:00
Code injection
2022-12-14 08:15:00
Information disclosure
2022-12-14 08:15:00
friendsofphp
friendsofphp
TYPO3-CORE-SA-2022-017: By-passing Cross-Site Scripting Protection in HTML Sanitizer
2022-12-13 09:19:37
TYPO3-CORE-SA-2022-016: Sensitive Information Disclosure via YAML Placeholder Expressions in Site Configuration
2022-12-13 09:19:27
TYPO3-CORE-SA-2022-015: Arbitrary Code Execution via Form Framework
2022-12-13 09:19:17
ubuntucve
ubuntucve
cve
cve
github
github
osv
osv
TYPO3 CMS vulnerable to Weak Authentication in Frontend Login
2022-12-13 17:04:02
TYPO3 HTML Sanitizer vulnerable to Cross-Site Scripting
2022-12-13 16:59:12
BIT-typo3-2022-23504
2024-03-06 11:09:48
veracode
veracode
Insufficient Session Expiration
2022-12-15 05:35:10
Information Disclosure
2022-12-15 05:42:44
Cross-site Scripting (XSS)
2022-12-14 04:54:30
openvas
openvas
TYPO3 Arbitrary Code Execution Vulnerability (TYPO3-CORE-SA-2022-015)
2022-12-14 00:00:00
TYPO3 Weak Authentication Vulnerability (TYPO3-CORE-SA-2022-013)
2022-12-14 00:00:00
cvelist
cvelist