Lucene search
Ubuntu.comUB:CVE-2012-1606HistorySep 04, 2012 - 12:00 a.m.
CVE-2012-1606
2012-09-0400:00:00
ubuntu.com
ubuntu.com
7
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
42.1%
Multiple cross-site scripting (XSS) vulnerabilities in the Backend
component in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0
through 4.6.6, 4.7, and 6.0 allow remote authenticated backend users to
inject arbitrary web script or HTML via unspecified vectors.
Notes
| Author | Note |
|---|---|
| tyhicks | Affected Versions: 4.4.0 up to 4.4.13, 4.5.0 up to 4.5.13, 4.6.0 up to 4.6.6 |
Related
github
github
Typo3 Backend XSS Vulnerabilities
2022-05-17 05:23:54
prion
prion
Cross site scripting
2012-09-04 20:55:00
osv
osv
Typo3 Backend XSS Vulnerabilities
2022-05-17 05:23:54
typo3-src - several
2012-03-31 00:00:00
cve
cve
CVE-2012-1606
2012-09-04 20:55:00
debian
debian
[SECURITY] [DSA 2445-1] typo3-src security update
2012-03-31 11:12:27
nessus
nessus
Debian DSA-2445-1 : typo3-src - several vulnerabilities
2012-04-02 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2445-1] typo3-src security update
2012-04-09 00:00:00
openvas
openvas
TYPO3 Multiple Vulnerabilities (Mar 2012)
2014-01-02 00:00:00
Debian: Security Advisory (DSA-2445-1)
2012-04-30 00:00:00
Debian Security Advisory DSA 2445-1 (typo3-src)
2012-04-30 00:00:00
typo3
typo3
Several Vulnerabilities in TYPO3 Core
2012-03-28 00:00:00
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
42.1%
Related for UB:CVE-2012-1606