Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-8758

Опубликовано: 08 янв. 2016
Источник: nvd
CVSS3: 5.4
CVSS2: 3.5
EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in unspecified frontend components in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allow remote authenticated editors to inject arbitrary web script or HTML via unknown vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:typo3:typo3:6.2.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:beta1:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:beta2:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:beta3:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:beta4:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:beta5:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:beta6:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:beta7:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.2:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.3:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.4:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.5:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.6:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.7:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.8:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.9:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.10:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.10:rc1:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.11:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.12:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.13:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.14:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:6.2.15:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.0.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.0.2:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.1.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.2.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.3.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.4.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.5.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.6.0:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:7.6.1:*:*:*:*:*:*:*

EPSS

Процентиль: 45%
0.00222
Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2015-8758

CVSS3: 5.4
ubuntu
около 10 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in unspecified frontend components in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allow remote authenticated editors to inject arbitrary web script or HTML via unknown vectors.

github логотип

GHSA-qvgq-rpwr-j8r5

CVSS3: 5.4
github
больше 3 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in unspecified frontend components in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allow remote authenticated editors to inject arbitrary web script or HTML via unknown vectors.

EPSS

Процентиль: 45%
0.00222
Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79