| CVE-2010-1020 |
medium |
— |
4.3 |
|
|
sk-typo3typo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the Simple Gallery (sk_simplegallery) extension 0.0.9 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified … |
| CVE-2010-1014 |
medium |
— |
4.3 |
|
|
steffen_kampertypo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the Reports Logfile View (reports_logview) extension 1.2.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspeci… |
| CVE-2010-1011 |
medium |
— |
4.3 |
|
|
tim_lochmuellertypo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the myDashboard (mydashboard) extension 0.1.13 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-1008 |
medium |
— |
4.3 |
|
|
christian_hennecketypo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the Sellector.com Widget Integration (chsellector) extension before 0.1.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unsp… |
| CVE-2010-1007 |
medium |
— |
5.0 |
|
|
chi_hoangtypo3 |
16y ago |
Unspecified vulnerability in the Power Extension Manager (ch_lightem) extension 1.0.34 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors. |
| CVE-2010-1005 |
medium |
— |
4.3 |
|
|
mischa_heimanntypo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the Yet another TYPO3 search engine (YATSE) extension before 0.3.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified… |
| CVE-2009-4707 |
medium |
— |
4.3 |
|
|
maximo_cuadrostypo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the [Gobernalia] Front End News Submitter (gb_fenewssubmit) extension 0.1.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or… |
| CVE-2009-4706 |
medium |
— |
4.3 |
|
|
sebastian_winterhaldertypo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the Mailform (mailform) extension before 0.9.24 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2009-4705 |
medium |
— |
4.3 |
|
|
thomas_loefflertypo3 |
16y ago |
Cross-site scripting (XSS) vulnerability in the Twitter Search (twittersearch) extension before 0.1.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2009-4704 |
medium |
— |
5.0 |
|
|
typo3 |
16y ago |
Unspecified vulnerability in the Webesse E-Card (ws_ecard) extension 1.0.2 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors. |
| CVE-2010-0797 |
medium |
— |
4.3 |
|
|
snowflaketypo3 |
17y ago |
Cross-site scripting (XSS) vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-0286 |
medium |
— |
5.1 |
|
|
typo3 |
17y ago |
Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack … |
