Lucene search

Dated News Security Vulnerabilities

cve

The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows SQL Injection.

9.8CVSS

9.7AI Score

0.002EPSS

2021-08-13 05:15 PM

cve

The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows XSS.

6.1CVSS

6.5AI Score

0.001EPSS

2021-08-13 05:15 PM

cve

The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows Information Disclosure of application registration data.

5.3CVSS

5.5AI Score

0.001EPSS

2021-08-13 05:15 PM

cve

The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 has incorrect Access Control for confirming various applications.

7.2CVSS

7.2AI Score

0.001EPSS

2021-08-13 05:15 PM