CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Typo3: >> Typo3 >> 4.1.13 Security Vulnerabilities

CVE-2008-4661

Cross-site scripting (XSS) vulnerability in the Page Improvements (sm_pageimprovements) 1.1.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.003

Published

2008-10-22

CVE-2007-6381

SQL injection vulnerability in the indexed_search system extension in TYPO3 3.x, 4.0 through 4.0.7, and 4.1 through 4.1.3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CVSS Score

6.5

EPSS Score

0.009

Published

2007-12-15

Page 25

Vulnerabilities

Vulnerable Software

Typo3: >> Typo3 >> 4.1.13 Security Vulnerabilities

Products

Pricing

Contact Us