Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-3284

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.02169EPSS
Exploits0References7
OSV
OSV
added 2022/05/17 1:37 a.m.18 views

GHSA-W563-RQ37-CVQ5 Typo3 Backend History Module Vulnerable to XSS

Cross-site scripting XSS vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5AI score0.01177EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/17 1:37 a.m.19 views

Typo3 Backend History Module Vulnerable to XSS

Cross-site scripting XSS vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.6AI score0.01177EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2014/05/20 2:55 p.m.18 views

CVE-2012-6146

The Backend History Module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 does not properly restrict access, which allows remote authenticated editors to read the history of arbitrary records via a crafted URL...

4CVSS6.1AI score0.00991EPSS
Exploits0References1
Prion
Prion
added 2014/05/20 2:55 p.m.15 views

Code injection

The Backend History Module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 does not properly restrict access, which allows remote authenticated editors to read the history of arbitrary records via a crafted URL...

4CVSS6.7AI score0.00991EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2014/05/20 2:0 p.m.55 views

CVE-2012-6146

The CVE-2012-6146 entry pertains to the TYPO3 Backend History Module. Affected series are TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6. The issue arises from insufficient access restriction, allowing remote authenticated editors to read the history of arbitrary records v...

4CVSS6.2AI score0.00991EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2014/05/20 2:0 p.m.24 views

CVE-2012-6146

The Backend History Module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 does not properly restrict access, which allows remote authenticated editors to read the history of arbitrary records via a crafted URL...

6.1AI score0.00991EPSS
Exploits0References1
NVD
NVD
added 2013/07/01 9:55 p.m.19 views

CVE-2012-6145

Cross-site scripting XSS vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.2AI score0.01177EPSS
Exploits0References4
Prion
Prion
added 2013/07/01 9:55 p.m.8 views

Sql injection

SQL injection vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.4AI score0.02169EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/07/01 9:0 p.m.27 views

CVE-2012-6145

Cross-site scripting XSS vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors...

5.2AI score0.01177EPSS
Exploits0References4
CVE
CVE
added 2013/07/01 9:0 p.m.66 views

CVE-2012-6145

TYPO3 Backend History module contains an XSS vulnerability (CVE-2012-6145) in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6. The issue allows remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors. Affected component: Backend His...

3.5CVSS5.2AI score0.01177EPSS
Exploits0References4Affected Software1
Typo3
Typo3
added 2012/11/08 12:0 a.m.54 views

Several Vulnerabilities in TYPO3 Core

It has been discovered that TYPO3 Core is vulnerable to SQL Injection, Information Disclosure and Cross-Site Scripting Component Type: TYPO3 Core Affected Versions: 4.5.0 up to 4.5.20, 4.6.0 up to 4.6.13, 4.7.0 up to 4.7.5 and development releases of the 6.0 branch. Vulnerability Types: SQL...

6.5CVSS0.7AI score0.02169EPSS
Exploits0Affected Software1
Rows per page
Query Builder