17 matches found
EUVD-2021-2076
Malware in sbrugna...
EUVD-2023-2550
Malicious code in bioql PyPI...
CVE-2021-38302
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection...
CVE-2018-5478
Contao 3.x before 3.5.32 allows XSS via the unsubscribe module in the frontend newsletter extension...
Contao Cross-site Scripting vulnerabililty
Contao 3.x before 3.5.32 allows Cross-site Scripting XSS via the unsubscribe module in the frontend newsletter extension...
CVE-2018-5478
Contao 3.x before 3.5.32 allows XSS via the unsubscribe module in the frontend newsletter extension...
Design/Logic Flaw
Contao 3.x before 3.5.32 allows XSS via the unsubscribe module in the frontend newsletter extension...
CVE-2018-5478
Contao 3.x before 3.5.32 allows XSS via the unsubscribe module in the frontend newsletter extension...
CVE-2018-5478
CVE-2018-5478 affects Contao 3.x up to 3.5.31. The vulnerability is a Cross-Site Scripting (XSS) flaw in the frontend newsletter extension's unsubscribe module, arising from inadequate input handling in that component. Impact is XSS in environments using Contao 3.x with the unsubscribe feature en...
PT-2022-28061 · Typo3 · Fp Newsletter
Name of the Vulnerable Software and Affected Versions: fp newsletter extension versions prior to 1.1.1 fp newsletter extension version 1.2.0 fp newsletter extension versions 2.x prior to 2.1.2 fp newsletter extension versions 2.2.1 through 2.4.0 fp newsletter extension versions 3.x prior to 3.2.6...
CVE-2022-47409
An issue was discovered in the fpnewsletter aka Newsletter subscriber management extension before 1.1.1, 1.2.0, 2.x before 2.1.2, 2.2.1 through 2.4.0, and 3.x before 3.2.6 for TYPO3. Attackers can unsubscribe everyone via a series of modified subscription UIDs in deleteAction operations...
PT-2022-28059 · Typo3 · Fp Newsletter
Name of the Vulnerable Software and Affected Versions: fp newsletter extension versions prior to 1.1.1 fp newsletter extension version 1.2.0 fp newsletter extension versions 2.x prior to 2.1.2 fp newsletter extension versions 2.2.1 through 2.4.0 fp newsletter extension versions 3.x prior to 3.2.6...
PT-2022-28062 · Typo3 · Fp Newsletter
Name of the Vulnerable Software and Affected Versions: fp newsletter extension versions 1.0 through 1.1.0 fp newsletter extension version 1.2.0 fp newsletter extension versions 2.0 through 2.1.1 fp newsletter extension versions 2.2.1 through 2.4.0 fp newsletter extension versions 3.0 through 3.2....
CVE-2021-38302
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection...
CVE-2021-38302
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection...
Sql injection
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection...
CVE-2021-38302
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection...