|
200041
|
5.4 |
MEDIUM
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 it has been discovered that content elements of type _menu_ are vulne…
|
-
|
CVE-2021-21370
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200042
|
7.5 |
HIGH
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 9.5.25, 10.4.14, 11.1.1 requesting invalid or non-existing resources via HTTP triggers the page error handler…
|
-
|
CVE-2021-21359
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200043
|
5.4 |
MEDIUM
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 10.4.14, 11.1.1 it has been discovered that the Form Designer backend module of the Form Framework is vulnera…
|
-
|
CVE-2021-21358
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200044
|
5.4 |
MEDIUM
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 10.4.14, 11.1.1 it has been discovered that database fields used as _descriptionColumn_ are vulnerable to cro…
|
CWE-79
Cross-site Scripting
|
CVE-2021-21340
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200045
|
7.5 |
HIGH
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 6.2.57, 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 user session identifiers were stored in cleartext - without p…
|
-
|
CVE-2021-21339
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200046
|
6.1 |
MEDIUM
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 6.2.57, 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 it has been discovered that Login Handling is susceptible to …
|
-
|
CVE-2021-21338
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200047
|
8.3 |
HIGH
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 8.7.40, 9.5.25, 10.4.14, 11.1.1 due to improper input validation, attackers can by-pass restrictions of prede…
|
-
|
CVE-2021-21357
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200048
|
8.6 |
HIGH
Network
|
typo3
|
typo3
|
TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 8.7.40, 9.5.25, 10.4.14, 11.1.1, due to the lack of ensuring file extensions belong to configured allowed mim…
|
-
|
CVE-2021-21355
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200049
|
9.1 |
CRITICAL
Network
|
xstream_project
debian
fedoraproject
oracle
|
xstream
debian_linux
fedora
banking_platform
webcenter_portal
communications_unified_inventory_management
communications_policy_management
banking_virtual_account_management
c…
|
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability may allow a remote attacker to load and execute arbitrary code from a …
|
-
|
CVE-2021-21351
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200050
|
9.8 |
CRITICAL
Network
|
xstream_project
debian
fedoraproject
oracle
|
xstream
debian_linux
fedora
banking_platform
weblogic_server
webcenter_portal
communications_unified_inventory_management
communications_policy_management
banking_virtual_acco…
|
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote attacker to execute arbitrary code only by ma…
|
-
|
CVE-2021-21350
|
2024-11-21 14:48 |
2021-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
