Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
typo3 freecap captcha extension vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-16699
The sr_freecap (aka freeCap CAPTCHA) extension 2.4.5 and below and 2.5.2 and below for TYPO3 fails to sanitize user input, which allows execution of arbitrary Extbase actions, resulting in Remote Code Execution.
Sr Freecap Project Sr Freecap
383
VMScore
CVE-2008-5995
Cross-site scripting (XSS) vulnerability in the freeCap CAPTCHA (sr_freecap) extension prior to 1.0.4 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Typo3 Freecap Captcha Extension 1.0.0
Typo3 Freecap Captcha Extension
Typo3 Freecap Captcha Extension 1.0.2
Typo3 Freecap Captcha Extension 1.0.1
890
VMScore
CVE-2009-3818
Unspecified vulnerability in the session handling feature in freeCap CAPTCHA (sr_freecap) extension 1.2.0 and previous versions for TYPO3 has unknown impact and attack vectors.
Stanislas Rolland Sr Freecap 1.1.2
Stanislas Rolland Sr Freecap 1.1.1
Stanislas Rolland Sr Freecap 1.1.0
Stanislas Rolland Sr Freecap 1.0.4
Stanislas Rolland Sr Freecap 0.3.1
Stanislas Rolland Sr Freecap 0.3.0
Stanislas Rolland Sr Freecap 0.2.3
Stanislas Rolland Sr Freecap 0.2.2
Stanislas Rolland Sr Freecap 1.0.3
Stanislas Rolland Sr Freecap 1.0.1
Stanislas Rolland Sr Freecap 0.4.6
Stanislas Rolland Sr Freecap 0.4.1
Stanislas Rolland Sr Freecap 0.3.3
Stanislas Rolland Sr Freecap 0.1.0
Stanislas Rolland Sr Freecap 0.4.5
Stanislas Rolland Sr Freecap 0.4.4
Stanislas Rolland Sr Freecap 0.4.3
Stanislas Rolland Sr Freecap 0.4.2
Stanislas Rolland Sr Freecap 1.0.2
Stanislas Rolland Sr Freecap 1.0.0
Stanislas Rolland Sr Freecap 0.4.0
Stanislas Rolland Sr Freecap 0.3.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started