Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
typo3 typo3 1.1.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-47409
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. Attackers can unsubscribe everyone via a series of modified subscription UIDs in del...
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
9.1
CVSSv3
CVE-2022-47408
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. There is a CAPTCHA bypass that can lead to subscribing many people.
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
7.5
CVSSv3
CVE-2022-47410
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. Data about subscribers may be obtained via createAction operations.
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
7.5
CVSSv3
CVE-2022-47411
An issue exists in the fp_newsletter (aka Newsletter subscriber management) extension prior to 1.1.1, 1.2.0, 2.x prior to 2.1.2, 2.2.1 up to and including 2.4.0, and 3.x prior to 3.2.6 for TYPO3. Data about subscribers may be obtained via unsubscribeAction operations.
Fp Newsletter Project Fp Newsletter
Fp Newsletter Project Fp Newsletter 1.2.0
NA
CVE-2015-4608
Cross-site scripting (XSS) vulnerability in the BE User Log (beko_beuserlog) extension 1.1.1 and previous versions for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Be User Log Project Be User Log
NA
CVE-2015-2821
TYPO3 Neos 1.1.x prior to 1.1.3 and 1.2.x prior to 1.2.3 allows remote editors to access, create, and modify content nodes in the workspace of other editors via unspecified vectors.
Typo3 Neos 1.1.0
Typo3 Neos 1.1.1
Typo3 Neos 1.1.2
Typo3 Neos 1.2.2
Typo3 Neos 1.2.0
Typo3 Neos 1.2.1
NA
CVE-2013-7082
Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in TYPO3 Flow (formerly FLOW3) 1.1.x prior to 1.1.1 and 2.0.x prior to 2.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified input, which is ...
Typo3 Flow 1.1.0
Typo3 Flow 2.0.0
NA
CVE-2013-5323
Cross-site scripting (XSS) vulnerability in the Static Info Tables (static_info_tables) extension prior to 2.3.1 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Stanislas Rolland Static Info Tables
Stanislas Rolland Static Info Tables 2.0.5
Stanislas Rolland Static Info Tables 1.7.0
Stanislas Rolland Static Info Tables 1.6.0
Stanislas Rolland Static Info Tables 1.0.0
Stanislas Rolland Static Info Tables 2.0.2
Stanislas Rolland Static Info Tables 2.0.1
Stanislas Rolland Static Info Tables 1.3.0
Stanislas Rolland Static Info Tables 1.2.0
Stanislas Rolland Static Info Tables 2.0.4
Stanislas Rolland Static Info Tables 2.0.3
Stanislas Rolland Static Info Tables 1.5.0
Stanislas Rolland Static Info Tables 1.4.0
Stanislas Rolland Static Info Tables 2.0.0
Stanislas Rolland Static Info Tables 1.8.0
Stanislas Rolland Static Info Tables 1.1.1
Stanislas Rolland Static Info Tables 1.1.0
NA
CVE-2013-5307
Cross-site scripting (XSS) vulnerability in the Faceted Search (ke_search) extension prior to 1.4.1 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Kennziffer Ke Search
Kennziffer Ke Search 1.3.1
Kennziffer Ke Search 0.3.0
Kennziffer Ke Search 0.2.0
Kennziffer Ke Search 1.3.0
Kennziffer Ke Search 1.2.0
Kennziffer Ke Search 0.1.1
Kennziffer Ke Search 1.1.1
Kennziffer Ke Search 1.1.0
Kennziffer Ke Search 1.0.2
Kennziffer Ke Search 1.0.1
Kennziffer Ke Search 1.0.0
NA
CVE-2013-4680
Open redirect vulnerability in Maag Form Captcha extension 2.0.0 and previous versions for TYPO3 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Urs Maag Maag Form Captcha 1.0.2
Urs Maag Maag Form Captcha 1.1.0
Urs Maag Maag Form Captcha 1.0.0
Urs Maag Maag Form Captcha 1.0.1
Urs Maag Maag Form Captcha 1.2.0
Urs Maag Maag Form Captcha 1.2.1
Urs Maag Maag Form Captcha 1.1.3
Urs Maag Maag Form Captcha 1.1.4
Urs Maag Maag Form Captcha 1.1.1
Urs Maag Maag Form Captcha 1.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »