Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
typo3 typo3 1.1.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-47408
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. There is a CAPTCHA bypass that can lead to subscribing many people.
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
NA
CVE-2022-47409
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. Attackers can unsubscribe everyone via a series of modified subscription UIDs in del...
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
NA
CVE-2022-47410
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. Data about subscribers may be obtained via createAction operations.
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
NA
CVE-2022-47411
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. Data about subscribers may be obtained via unsubscribeAction operations.
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
3.5
CVSSv2
CVE-2015-4608
Cross-site scripting (XSS) vulnerability in the BE User Log (beko_beuserlog) extension 1.1.1 and previous versions for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Be User Log Project Be User Log
6.5
CVSSv2
CVE-2015-2821
TYPO3 Neos 1.1.x prior to 1.1.3 and 1.2.x prior to 1.2.3 allows remote editors to access, create, and modify content nodes in the workspace of other editors via unspecified vectors.
Typo3 Neos 1.1.0
Typo3 Neos 1.1.1
Typo3 Neos 1.1.2
Typo3 Neos 1.2.2
Typo3 Neos 1.2.0
Typo3 Neos 1.2.1
4.3
CVSSv2
CVE-2013-7082
Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in TYPO3 Flow (formerly FLOW3) 1.1.x prior to 1.1.1 and 2.0.x prior to 2.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified input, which is ...
Typo3 Flow 1.1.0
Typo3 Flow 2.0.0
4.3
CVSSv2
CVE-2013-5323
Cross-site scripting (XSS) vulnerability in the Static Info Tables (static_info_tables) extension prior to 2.3.1 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Stanislas Rolland Static Info Tables
Stanislas Rolland Static Info Tables 2.0.5
Stanislas Rolland Static Info Tables 1.7.0
Stanislas Rolland Static Info Tables 1.6.0
Stanislas Rolland Static Info Tables 1.0.0
Stanislas Rolland Static Info Tables 2.0.2
Stanislas Rolland Static Info Tables 2.0.1
Stanislas Rolland Static Info Tables 1.3.0
Stanislas Rolland Static Info Tables 1.2.0
Stanislas Rolland Static Info Tables 2.0.4
Stanislas Rolland Static Info Tables 2.0.3
Stanislas Rolland Static Info Tables 1.5.0
Stanislas Rolland Static Info Tables 1.4.0
Stanislas Rolland Static Info Tables 2.0.0
Stanislas Rolland Static Info Tables 1.8.0
Stanislas Rolland Static Info Tables 1.1.1
Stanislas Rolland Static Info Tables 1.1.0
4.3
CVSSv2
CVE-2013-5307
Cross-site scripting (XSS) vulnerability in the Faceted Search (ke_search) extension prior to 1.4.1 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Kennziffer Ke Search
Kennziffer Ke Search 1.3.1
Kennziffer Ke Search 0.3.0
Kennziffer Ke Search 0.2.0
Kennziffer Ke Search 1.3.0
Kennziffer Ke Search 1.2.0
Kennziffer Ke Search 0.1.1
Kennziffer Ke Search 1.1.1
Kennziffer Ke Search 1.1.0
Kennziffer Ke Search 1.0.2
Kennziffer Ke Search 1.0.1
Kennziffer Ke Search 1.0.0
6.4
CVSSv2
CVE-2013-4680
Open redirect vulnerability in Maag Form Captcha extension 2.0.0 and previous versions for TYPO3 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Urs Maag Maag Form Captcha 1.0.2
Urs Maag Maag Form Captcha 1.1.0
Urs Maag Maag Form Captcha 1.0.0
Urs Maag Maag Form Captcha 1.0.1
Urs Maag Maag Form Captcha 1.2.0
Urs Maag Maag Form Captcha 1.2.1
Urs Maag Maag Form Captcha 1.1.3
Urs Maag Maag Form Captcha 1.1.4
Urs Maag Maag Form Captcha 1.1.1
Urs Maag Maag Form Captcha 1.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »