Lucene search
HistoryOct 03, 2014 - 2:55 p.m.
CVE-2014-6294
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
50.1%
Cross-site scripting (XSS) vulnerability in the External links click statistics (outstats) extension 0.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
external_links_click_statistics_projectexternal_links_click_statisticsRange≤0.0.3typo3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| external_links_click_statistics_project | external_links_click_statistics | * | cpe:2.3:a:external_links_click_statistics_project:external_links_click_statistics:*:*:*:*:*:typo3:*:* |
Related
cvelist
cvelist
CVE-2014-6294
2014-10-03 14:00:00
prion
prion
Cross site scripting
2014-10-03 14:55:00
cve
cve
CVE-2014-6294
2014-10-03 14:55:09
typo3
typo3
Several vulnerabilities in third party extensions
2014-02-12 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
50.1%
Related for NVD:CVE-2014-6294