Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

35 matches found

Typo3
Typo3added 2011/11/15 12:0 a.m.13 views

Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)

It has been discovered that the extension phpMyAdmin phpmyadmin is vulnerable to Local file inclusion. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 4.11.8 and below Vulnerability Type: Local file inclusion...

7AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/11/15 12:0 a.m.13 views

Authentication Bypass and Blind LDAP Injection in extension eu_ldap

It has been discovered that the extension euladap is vulnerable to Authentication Bypass and Blind LDAP Injection Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 2.8.10 and all versions below Vulnerability Type:...

7.1AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/10/20 12:0 a.m.13 views

Remote File Disclosure and Cross-Site Scripting vulnerability in extensions pmkshadowbox and pmkslimbox

It has been discovered that the extensions pmkshadowbox and pmkslimbox are vulnerable to Remote File Disclosure and Cross-Site Scripting. Release Date: Oktober 20, 2011 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Extension: pmkshadowbox...

6.3AI score
Exploits0Affected Software2
Typo3
Typo3added 2011/09/27 12:0 a.m.10 views

Cross-Site scripting vulnerability in extension t3blog (t3blog)

It has been discovered that the extension "T3Blog" t3blog is vulnerable to Cross-Site Scripting. Release Date: September 27, 2011 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.1.1 and all versions below...

6.1AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/09/14 12:0 a.m.11 views

Improper error handling could lead to cache flooding in TYPO3 Core

It has been discovered that TYPO3 is susceptible to Cache Flooding Component Type: TYPO3 Core Affected Versions: 4.2.0 - 4.2.17, 4.3.0 - 4.3.13, 4.4.0 - 4.4.10 and 4.5.0 - 4.5.5 Release Date: September 14, 2011 Vulnerable subcomponent: Caching System Vulnerability Type: Improper error handling...

6.8AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/09/07 12:0 a.m.13 views

Several Vulnerabilities in extension SmoothGallery for TYPO3 (rgsmoothgallery)

Several vulnerabilities have been found in the following third-party TYPO3 extension: rgsmoothgallery Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.5.1 and below Vulnerability Types: Cross-Site Scripting,...

6.9AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/09/07 12:0 a.m.14 views

A vulnerability in extension Drag Drop Mass Upload (ameos_dragndropupload)

A vulnerability has been found in the following third-party TYPO3 extension: ameosdragndropupload Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 2.0.2 and below Vulnerability Types: Arbitrary Code Execution Severit...

7AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/09/07 12:0 a.m.11 views

Several Vulnerabilities in extension Direct Mail Subscription (direct_mail_subscription)

Several vulnerabilities have been found in the following third-party TYPO3 extension: directmailsubscription Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.1.0 and below Vulnerability Types: SQL Injection,...

7.4AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/08/25 12:0 a.m.60 views

Several Vulnerabilities in extension Formhandler (formhandler)

It has been discovered that the extension Formhandler formhandler is vulnerable to SQL-Injection and Cross-Site Scripting. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 0.9.14 and below Vulnerability Types: SQL...

6.9AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/08/25 12:0 a.m.9 views

Cross Site Scripting Vulnerability in extension Questionaire (pbsurvey)

It has been discovered that the extension "Questionaire" pbsurvey is vulnerable to Cross-Site Scripting. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.3.0 and below Vulnerability Types: Cross-Site Scripting...

6.6AI score
Exploits0Affected Software1
Typo3
Typo3added 2011/05/23 12:0 a.m.15 views

Cross-Site Scripting and Open Redirection vulnerability in extension phpMyAdmin (phpmyadmin)

It has been discovered that the extension phpMyAdmin phpmyadmin is vulnerable to Cross-Site Scripting and Open Redirection. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 4.10.3 and below Vulnerability Type:...

6AI score
Exploits0Affected Software1
Typo3
Typo3added 2010/09/22 12:0 a.m.17 views

TYPO3 Security Bulletin

It has been discovered that the extension powermail powermail is vulnerable to Cross-Site Scripting, SQL Injection and Validation Bypass Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.5.3 and below Vulnerability...

7.1AI score
Exploits0Affected Software1
Typo3
Typo3added 2010/07/29 12:0 a.m.89 views

TYPO3 Security Bulletin

It has been discovered that the extension phpMyAdmin phpmyadmin is vulnerable to Broken Access Control. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 4.1.0 till 4.8.0 including Vulnerability Type: Broken Access...

6.8AI score
Exploits0Affected Software1
Typo3
Typo3added 2010/04/09 12:0 a.m.12 views

Vulnerability in TYPO3 Core

It has been discovered that TYPO3 Core is vulnerable to Remote Command Execution. Component Type: TYPO3 Core Affected Versions: 4.3.0, 4.3.1 and 4.3.2 + development releases of 4.4 branch Vulnerability Types: Remote Command Execution Overall Severity: Critical Release Date: April 9, 2010 Vulnerab...

7.5AI score
Exploits0Affected Software1
Typo3
Typo3added 2009/10/20 12:0 a.m.13 views

TYPO3 Security Bulletin

Several vulnerabilities have been found in the following third party TYPO3 extensions: Apache Solr Search solr, Random Images maagrandomimage, Flagbit Filebase fbfilebase, freeCap CAPTCHA srfreecap Release Date: Oktober 20, 2009 Please read first: This Collective Security Bulletin CSB is a listin...

7.4AI score
Exploits0Affected Software4
Typo3
Typo3added 2009/06/16 12:0 a.m.16 views

Cross-Site Scripting vulnerability in extension Modern Guestbook / Commenting System (ve_guestbook)

It has been discovered that the extension Modern Guestbook / Commenting system veguestbook is vulnerable to Cross-Site Scripting. Release Date: June 16, 2009 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 2.7.1 and...

6.6AI score
Exploits0Affected Software1
Typo3
Typo3added 2009/06/16 12:0 a.m.22 views

TYPO3 Security Bulletin

It has been discovered that the extension CWT Community cwtcommunity is vulnerable to SQL-injections. Release Date: June 16 2009 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.0.3 and all versions below...

7.3AI score
Exploits0Affected Software1
Typo3
Typo3added 2009/04/06 12:0 a.m.11 views

Information Disclosure in third party extension "Frontend User registration"

It has been discovered that the TYPO3 extension "Frontend User Registration" srfeuserregister is susceptible to Information Disclosure. Release Date: April 6, 2009 Component Type: Third party extension. This extension is not a part of a TYPO3 default installation. Affected Versions: 2.5.20 and al...

6.6AI score
Exploits0Affected Software1
Typo3
Typo3added 2009/01/23 12:0 a.m.92 views

XSS and SQL injection vulnerabilities in extension "phpMyAdmin" (phpmyadmin)

It has been discovered that the extension phpMyAdmin phpmyadmin is vulnerable to XSS and SQL injections. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 4.3.0 and all versions below Vulnerability Type: Cross-Site...

6.9AI score
Exploits0Affected Software1
Typo3
Typo3added 2008/12/22 12:0 a.m.14 views

TYPO3 Security Bulletin

It has been discovered that the extension phpMyAdmin phpmyadmin is vulnerable to SQL injections via XSRF. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 4.1.1 and all versions below Vulnerability Type: SQL injectio...

7.8AI score
Exploits0Affected Software1
Rows per page
Query Builder