NotCVE - vendor:"Typo3" product:"Typo3" version:" >= 4.3.0

Page 6 of 53 results (0.024 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2010-0286

https://notcve.org/view.php?id=CVE-2010-0286

21 Feb 2010 — Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities during authentication. Vulnerabilidad no especificada en la extensión OpenID Identity Authentication para TYPO3 v4.3.0 permite a atacantes remotos saltarse la autenticación y ganar acceso a una cuenta de usuario de la ... • http://osvdb.org/61680 •

CVSS: 5.4EPSS: 0%CPEs: 46EXPL: 0

CVE-2009-3629

https://notcve.org/view.php?id=CVE-2009-3629

02 Nov 2009 — Multiple cross-site scripting (XSS) vulnerabilities in the Backend subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en el subcomponente Backend de TYPO3 v4.0.13 y anteriores, v4.1.x anteriores a v4.1.13, v4.2.x anteriores a v4.2.10 y v4.3.x anteriores a v4.3beta2. Permiten a ... • http://marc.info/?l=oss-security&m=125632856206736&w=2 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 8.8EPSS: 0%CPEs: 46EXPL: 0

CVE-2009-3632

https://notcve.org/view.php?id=CVE-2009-3632

02 Nov 2009 — SQL injection vulnerability in the traditional frontend editing feature in the Frontend Editing subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 allows remote authenticated users to execute arbitrary SQL commands via unspecified parameters. Vulnerabilidad de inyección SQL en la funcionalidad de edición del "frontend" (portal de usuario) tradicional del subcomponente "Frontend Editing" (edición del portal de usuario) de TYPO3 v4.0.13 y anteriores, ... • http://marc.info/?l=oss-security&m=125632856206736&w=2 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

1...4 5 6