The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of TYPO3 Extensions ~ not comprehensive

phpMyAdmin: SQL injection via Search
An attacker can use a SQL injection via Search of phpMyAdmin, in order to read or alter data...
CERTFR-2020-AVI-628, CVE-2020-26935, DLA-2413-1, FEDORA-2020-4e78c86902, FEDORA-2020-eadda524a8, openSUSE-SU-2020:1675-1, openSUSE-SU-2020:1806-1, PMASA-2020-6, TYPO3-EXT-SA-2020-018, USN-4639-1, VIGILANCE-VUL-33539
phpMyAdmin: Cross Site Scripting via Transformation
An attacker can trigger a Cross Site Scripting via Transformation of phpMyAdmin, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-628, CVE-2020-26934, DLA-2413-1, FEDORA-2020-4e78c86902, FEDORA-2020-eadda524a8, openSUSE-SU-2020:1675-1, openSUSE-SU-2020:1806-1, PMASA-2020-5, TYPO3-EXT-SA-2020-018, USN-4639-1, VIGILANCE-VUL-33538
TYPO3 Event management and registration: two vulnerabilities
An attacker can use several vulnerabilities of TYPO3 Event management and registration...
CVE-2020-25026, TYPO3-EXT-SA-2020-017, VIGILANCE-VUL-33220
TYPO3 Localization Manager: information disclosure
An attacker can bypass access restrictions to data of TYPO3 Localization Manager, in order to obtain sensitive information...
CVE-2020-25025, TYPO3-EXT-SA-2020-016, VIGILANCE-VUL-33219
TYPO3 Kitodo.Presentation: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of TYPO3 Kitodo.Presentation, in order to run JavaScript code in the context of the web site...
CVE-2020-16095, TYPO3-EXT-SA-2020-015, VIGILANCE-VUL-32950
TYPO3 mm_forum: multiple vulnerabilities
An attacker can use several vulnerabilities of TYPO3 mm_forum...
CVE-2020-15516, TYPO3-EXT-SA-2020-013, VIGILANCE-VUL-32737
TYPO3 Google reCAPTCHA: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of TYPO3 Google reCAPTCHA, in order to run JavaScript code in the context of the web site...
CVE-2020-15514, TYPO3-EXT-SA-2020-012, VIGILANCE-VUL-32736
TYPO3 typo3_forum: privilege escalation via Broken Access Control
An attacker can bypass restrictions via Broken Access Control of TYPO3 typo3_forum, in order to escalate his privileges...
CVE-2020-15513, TYPO3-EXT-SA-2020-010, VIGILANCE-VUL-32734
TYPO3 Faceted Search: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of TYPO3 Faceted Search, in order to run JavaScript code in the context of the web site...
CVE-2020-15517, TYPO3-EXT-SA-2020-009, VIGILANCE-VUL-32733
phpMyAdmin: SQL injection via Data Display
An attacker can use a SQL injection via Data Display of phpMyAdmin, in order to read or alter data...
CERTFR-2020-AVI-167, CVE-2020-10803, DLA-2154-1, FEDORA-2020-25f3aea389, FEDORA-2020-d7b0a5a84a, openSUSE-SU-2020:0405-1, openSUSE-SU-2020:0427-1, openSUSE-SU-2020:1806-1, PMASA-2020-4, TYPO3-EXT-SA-2020-004, TYPO3-EXT-SA-2020-005, TYPO3-EXT-SA-2020-006, TYPO3-EXT-SA-2020-007, TYPO3-EXT-SA-2020-008, USN-4639-1, VIGILANCE-VUL-31854
Our database contains other pages. You can request a free trial to read them.

Display information about TYPO3 Extensions ~ not comprehensive: