CVE-2013-7074

Опубликовано: 21 дек. 2013

Источник: nvd

CVSS2: 3.5

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Content Editing Wizards in TYPO3 4.5.x before 4.5.32, 4.7.x before 4.7.17, 6.0.x before 6.0.12, 6.1.x before 6.1.7, and the development versions of 6.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:typo3:typo3:6.1:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.1.1:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.1.2:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.1.3:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.1.4:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.1.5:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.1.6:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:typo3:typo3:4.7.0:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.1:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.2:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.3:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.4:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.5:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.6:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.7:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.8:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.9:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.10:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.11:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.12:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.13:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.14:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.15:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.7.16:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:a:typo3:typo3:4.5.0:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.1:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.2:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.3:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.4:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.5:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.6:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.7:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.8:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.9:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.10:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.11:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.12:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.13:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.14:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.15:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.16:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.17:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.18:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.19:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.20:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.21:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.22:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.23:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.24:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.25:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.26:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.27:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.28:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.29:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.30:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:4.5.31:*:*:*:*:*:*:*

Конфигурация 5

Одно из

cpe:2.3:a:typo3:typo3:6.0:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.1:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.2:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.3:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.4:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.5:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.6:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.7:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.8:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.9:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.10:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:6.0.11:*:*:*:*:*:*:*

EPSS

Процентиль: 56%

0.00335

Низкий

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

CVE-2013-7074

ubuntu

около 12 лет назад

CVE-2013-7074

debian

около 12 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Content Editing ...

GHSA-r8m7-792j-5jvq

CVSS3: 3

github

больше 3 лет назад

TYPO3 Cross-Site Scripting (XSS) vulnerabilities in Content Editing Wizards component

EPSS

Процентиль: 56%

0.00335

Низкий

3.5 Low

CVSS2

Дефекты

CWE-79