Dynamic Content Elements Security Vulnerabilities and Issues — Dynamic Content Elements CVE List

Lucene search

Dynamic Content Elements ProjectDynamic Content Elements

2 matches found

CVE•added 2021/04/28 7:15 a.m.•88 views

CVE-2021-31777

The dce (aka Dynamic Content Element) extension 2.2.0 through 2.6.x before 2.6.2, and 2.7.x before 2.7.1, for TYPO3 allows SQL Injection via a backend user account.

4.9CVSS5.7AI score0.00287EPSS

CVE•added 2020/02/03 2:15 p.m.•37 views

CVE-2014-8328

The default configuration in the Dynamic Content Elements (dce) extension before 0.11.5 for TYPO3 allows remote attackers to obtain sensitive installation environment information by reading the update check request.

5.3CVSS5.1AI score0.00324EPSS