Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2009-4161 | 4.3 |
Cross-site scripting (XSS) vulnerability in the [AN] Search it! (an_searchit) extension 2.4.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
17-12-2009 - 05:00 | 02-12-2009 - 17:30 | |
CVE-2009-4167 | 6.4 |
Unspecified vulnerability in the Automatic Base Tags for RealUrl (lt_basetag) extension 1.0.0 for TYPO3 allows remote attackers to conduct "Cache spoofing" attacks via unspecified vectors.
|
07-12-2009 - 05:00 | 02-12-2009 - 17:30 | |
CVE-2009-4163 | 7.5 |
SQL injection vulnerability in the TW Productfinder (tw_productfinder) extension 0.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
07-12-2009 - 05:00 | 02-12-2009 - 17:30 | |
CVE-2009-4165 | 7.5 |
SQL injection vulnerability in the simple Glossar (simple_glossar) extension 1.0.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
03-12-2009 - 05:00 | 02-12-2009 - 17:30 | |
CVE-2009-4162 | 7.2 |
Unspecified vulnerability in the DB Integration (wfqbe) extension 1.3.1 and earlier for TYPO3 allows local users to execute arbitrary commands via unspecified vectors.
|
03-12-2009 - 05:00 | 02-12-2009 - 17:30 | |
CVE-2009-4166 | 7.5 |
SQL injection vulnerability in the Trips (mchtrips) extension 2.0.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
03-12-2009 - 05:00 | 02-12-2009 - 17:30 | |
CVE-2009-4164 | 4.3 |
Cross-site scripting (XSS) vulnerability in the simple Glossar (simple_glossar) extension 1.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
03-12-2009 - 05:00 | 02-12-2009 - 17:30 | |
CVE-2009-4160 | 5.0 |
Unspecified vulnerability in the Simple download-system with counter and categories (kk_downloader) extension 1.2.1 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown attack vectors.
|
03-12-2009 - 05:00 | 02-12-2009 - 17:30 |