Vulnerability Details CVE-2014-6290
The News (tt_news) extension before 3.5.2 for TYPO3 allows remote attackers to have unspecified impact via vectors related to an "insecure unserialize" issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.1%
CVSS Severity
CVSS v2 Score 7.5
References
Products affected by CVE-2014-6290
-
cpe:2.3:a:news_project:news:3.0.0
-
cpe:2.3:a:news_project:news:3.0.1
-
cpe:2.3:a:news_project:news:3.1.0
-
cpe:2.3:a:news_project:news:3.2.0
-
cpe:2.3:a:news_project:news:3.2.1
-
cpe:2.3:a:news_project:news:3.4.0
-
cpe:2.3:a:news_project:news:3.5.0
-
cpe:2.3:a:news_project:news:3.5.1