CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-3004

Malicious code in bioql PyPI...

6.4CVSS6.3AI score0.00634EPSS

Exploits0References13

SUSE CVE•added 2023/02/15 5:39 a.m.•1 views

SUSE CVE-2013-1843

Open redirect vulnerability in the Access tracking mechanism in TYPO3 4.5.x before 4.5.24, 4.6.x before 4.6.17, 4.7.x before 4.7.9, and 6.0.x before 6.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

6.4CVSS6.8AI score0.00634EPSS

Exploits0References3

Github Security Blog•added 2022/05/17 5:28 a.m.•33 views

TYPO3 Remote File Disclosure vulnerability in the jumpUrl mechanism

The jumpUrl aka access tracking implementation in tslib/class.tslibfe.php in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly compare certain hash values during access-control decisions, which allows remote attackers to read arbitrary files via unspecified...

7.1CVSS6.8AI score0.33647EPSS

Exploits7References10Affected Software1

Github Security Blog•added 2022/05/17 5:8 a.m.•19 views

TYPO3 Open redirect vulnerability in the Access tracking mechanism

6.4CVSS6.9AI score0.00634EPSS

Exploits0References10Affected Software1

OSV•added 2022/05/17 5:8 a.m.•21 views

GHSA-7GXQ-5QQC-V3FC TYPO3 Open redirect vulnerability in the Access tracking mechanism

5.3CVSS6.3AI score0.00634EPSS

Exploits0References10

NVD•added 2016/12/15 6:59 a.m.•9 views

CVE-2016-4047

An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev8. References to external Open XML document type definitions .dtd resources can be placed within .docx and .xslx files. Those resources were requested when parsing certain parts of the generated document. As a result an attacker...

4.3CVSS4.5AI score0.00133EPSS

Exploits1References2

OpenVAS•added 2014/01/03 12:0 a.m.•35 views

TYPO3 Multiple Vulnerabilities (Mar 2013)

TYPO3 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; ifdescription...

7.5CVSS6.4AI score0.03325EPSS

Exploits0References4

NVD•added 2013/03/20 3:55 p.m.•13 views

CVE-2013-1843

6.4CVSS6.5AI score0.00634EPSS

Exploits0References8

UbuntuCve•added 2013/03/20 3:55 p.m.•26 views

CVE-2013-1843

6.4CVSS6AI score0.00634EPSS

Exploits0References1

Prion•added 2013/03/20 3:55 p.m.•20 views

Open redirect

6.4CVSS7AI score0.00634EPSS

Exploits0References8Affected Software1

Cvelist•added 2013/03/20 3:0 p.m.•20 views

CVE-2013-1843

6.4AI score0.00634EPSS

Exploits0References8

Debian•added 2013/03/15 8:47 p.m.•27 views

[SECURITY] [DSA 2646-1] typo3-src security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2646-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 15, 2013 http://www.debian.org/security/faq -...

7.5CVSS7.1AI score0.03325EPSS

Exploits0

OpenVAS•added 2013/03/15 12:0 a.m.•30 views

Debian Security Advisory DSA 2646-1 (typo3-src - several vulnerabilities)

TYPO3, a PHP-based content management system, was found vulnerable to several vulnerabilities. CVE-2013-1842 Helmut Hummel and Markus Opahle discovered that the Extbase database layer was not correctly sanitizing user input when using the Query object model. This can lead to SQL injection by a...

7.5CVSS0.1AI score0.03325EPSS

Exploits0References1

OpenVAS•added 2013/03/14 12:0 a.m.•15 views

Debian: Security Advisory (DSA-2646-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.03325EPSS

Exploits0References3

Tenable Nessus•added 2013/03/07 12:0 a.m.•13 views

FreeBSD : typo3 -- Multiple vulnerabilities in TYPO3 Core (b9a347ac-8671-11e2-b73c-0019d18c446a)

Typo Security Team reports : Extbase Framework - Failing to sanitize user input, the Extbase database abstraction layer is susceptible to SQL Injection. TYPO3 sites which have no Extbase extensions installed are not affected. Extbase extensions are affected if they use the Query Object Model and...

6AI score

Exploits0References2

FreeBSD•added 2013/03/06 12:0 a.m.•16 views

typo3 -- Multiple vulnerabilities in TYPO3 Core

Typo Security Team reports: Extbase Framework - Failing to sanitize user input, the Extbase database abstraction layer is susceptible to SQL Injection. TYPO3 sites which have no Extbase extensions installed are not affected. Extbase extensions are affected if they use the Query Object Model and...

0.6AI score

Exploits0References1

Typo3•added 2013/03/06 12:0 a.m.•26 views

SQL Injection and Open Redirection in TYPO3 Core

It has been discovered that TYPO3 Core is susceptible to SQL Injection and Open Redirection Component Type: TYPO3 Core Affected Versions: 4.5.0 up to 4.5.23, 4.6.0 up to 4.6.16, 4.7.0 up to 4.7.8 and 6.0.0 up to 6.0.2 Vulnerability Types: SQL Injection, Open Redirection Overall Severity: High...

7.9AI score

Exploits0Affected Software1

NVD•added 2010/10/25 8:1 p.m.•17 views

CVE-2010-3714

7.1CVSS6.4AI score0.33647EPSS

Exploits7References5

Prion•added 2010/10/25 8:1 p.m.•22 views

Design/Logic Flaw

7.1CVSS6.7AI score0.33647EPSS

Exploits7References5Affected Software1

Cvelist•added 2010/10/25 7:0 p.m.•22 views

CVE-2010-3714