Lucene search
OpenJS FoundationFRIENDSOFPHP:TPWD:KE_SEARCH:CVE-2023-35783HistoryJun 09, 2023 - 10:36 a.m.
TYPO3-EXT-SA-2023-004: Cross-Site Scripting in extension "Faceted Search" (ke_search)
2023-06-0910:36:00
OpenJS Foundation
github.com
4
typo3
ext-sa-2023-004
cross-site scripting
faceted search
ke_search
software
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
7.2
Confidence
Low
EPSS
0.001
Percentile
18.7%
Affected configurations
Node
tpwdke_searchRange<5.0.2
Related
cvelist
cvelist
CVE-2023-35783
2023-06-16 00:00:00
cve
cve
CVE-2023-35783
2023-06-16 15:15:10
friendsofphp
friendsofphp
veracode
veracode
Cross-Site Scripting (XSS)
2023-06-26 09:03:12
osv
osv
ke_search (aka Faceted Search) vulnerable to Cross-Site Scripting
2023-06-16 15:30:19
github
github
ke_search (aka Faceted Search) vulnerable to Cross-Site Scripting
2023-06-16 15:30:19
nvd
nvd
CVE-2023-35783
2023-06-16 15:15:10
prion
prion
Design/Logic Flaw
2023-06-16 15:15:00
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
7.2
Confidence
Low
EPSS
0.001
Percentile
18.7%
Related for FRIENDSOFPHP:TPWD:KE_SEARCH:CVE-2023-35783