Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:59 p.m.19 views

CVE-2021-36792

The datednews aka Dated News extension through 5.1.1 for TYPO3 has incorrect Access Control for confirming various applications...

7.2CVSS7AI score0.00672EPSS
Exploits0References1
Circl
Circl
added 2021/08/13 8:41 p.m.6 views

CVE-2021-36792

creationtimestamp| type| source ---|---|--- 2021-08-13 20:41:21+00:00| seen| https://t.me/cibsecurity/27324...

7.2CVSS7.6AI score0.00672EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/08/13 4:8 p.m.22 views

CVE-2021-36792

The datednews aka Dated News extension through 5.1.1 for TYPO3 has incorrect Access Control for confirming various applications...

7.3AI score0.00672EPSS
Exploits0References2
CVE
CVE
added 2021/08/13 4:8 p.m.80 views

CVE-2021-36792

The CVE-2021-36792 issue affects the TYPO3 dated_news extension (versions up to 5.1.1). Root cause: incorrect Access Control for confirming various applications. Impact (as described in related sources): attackers could confirm various applications and potentially access all application registrat...

7.2CVSS7.2AI score0.00672EPSS
Exploits0References2Affected Software1
Typo3
Typo3
added 2021/08/10 12:0 a.m.49 views

Multiple vulnerabilities in Extension "Dated News" (dated_news)

The extension fails to properly encode user input for output in HTML context CVE-2021-36790 and contains a blind SQL injection vulnerability CVE-2021-36789. It is also possible to confirm various applications CVE-2021-36792 and thereby obtain all application registration data CVE-2021-36791...

7.5CVSS7.1AI score0.00996EPSS
Exploits0Affected Software1
Rows per page
Query Builder