Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
typo3 commerce extension vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4963
Cross-site scripting (XSS) vulnerability in the Commerce extension prior to 0.9.9 for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Typo3 Commerce Extension
Typo3 Commerce Extension 0.8.32
Typo3 Commerce Extension 0.8.35
Typo3 Commerce Extension 0.9.0
Typo3 Commerce Extension 0.9.5
Typo3 Commerce Extension 0.9.6
Typo3 Commerce Extension 0.9.7
NA
CVE-2008-5609
SQL injection vulnerability in the Commerce extension 0.9.6 and previous versions for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Typo3 Commerce Extension
Typo3 Commerce Extension 0.8.32
Typo3 Commerce Extension 0.8.35
Typo3 Commerce Extension 0.9.0
Typo3 Commerce Extension 0.9.5
5.4
CVSSv3
CVE-2021-28380
The aimeos (aka Aimeos shop and e-commerce framework) extension prior to 19.10.12 and 20.x prior to 20.10.5 for TYPO3 allows XSS via a backend user account.
Aimeos Project Aimeos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started