| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-5308 | 4.3 |
Cross-site scripting (XSS) vulnerability in the RealURL Management (realurlmanagement) extension 0.3.4 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 | |
| CVE-2013-5310 | 7.5 |
SQL injection vulnerability in the DB Integration (wfqbe) extension before 2.0.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 | |
| CVE-2013-5302 | 7.5 |
SQL injection vulnerability in the Faceted Search (ke_search) extension before 1.4.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 | |
| CVE-2013-5307 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Faceted Search (ke_search) extension before 1.4.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 | |
| CVE-2013-5305 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Store Locator (locator) extension before 3.1.5 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 | |
| CVE-2013-5306 | 7.5 |
SQL injection vulnerability in the Browser - TYPO3 without PHP (browser) extension before 4.5.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 | |
| CVE-2013-5303 | 10.0 |
Unspecified vulnerability in the Store Locator (locator) extension before 3.1.5 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 | |
| CVE-2013-5304 | 7.5 |
SQL injection vulnerability in the Store Locator (locator) extension before 3.1.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
29-08-2017 - 01:33 | 16-08-2013 - 17:55 |