Lucene search
Dated News ProjectDated News*
4 matches found
CVE-2021-36789
The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows SQL Injection.
9.8CVSS9.7AI score0.00638EPSS
CVE-2021-36790
The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows XSS.
6.1CVSS6.5AI score0.00458EPSS
CVE-2021-36791
The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows Information Disclosure of application registration data.
5.3CVSS5.5AI score0.00186EPSS
CVE-2021-36792
The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 has incorrect Access Control for confirming various applications.
7.2CVSS7.2AI score0.0018EPSS