Lucene search
+L

5 matches found

Github Security Blog
Github Security Blog
added 2022/05/24 5:3 p.m.23 views

TYPO3 Insecure Deserialization in Query Generator & Query View

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel Backend Module: DB...

8.8CVSS6.6AI score0.01267EPSS
Exploits0References7Affected Software2
NVD
NVD
added 2019/12/17 5:15 p.m.49 views

CVE-2019-19849

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel Backend Module: DB...

8.8CVSS8.6AI score0.01267EPSS
Exploits0References2
OSV
OSV
added 2019/12/17 5:15 p.m.14 views

CVE-2019-19849

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel Backend Module: DB...

8.8CVSS6.7AI score
Exploits0References2
Prion
Prion
added 2019/12/17 5:15 p.m.23 views

Deserialization of untrusted data

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel Backend Module: DB...

6.5CVSS8.5AI score0.01267EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/12/17 4:3 p.m.45 views

CVE-2019-19849

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel Backend Module: DB...

8.8CVSS8.6AI score0.01267EPSS
Exploits0References2
Rows per page
Query Builder