CVE-2013-5323

Published Aug 20, 2013

Last updated 7 years ago

CVSS info 4.3

Overview

Description: Cross-site scripting (XSS) vulnerability in the Static Info Tables (static_info_tables) extension before 2.3.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-79

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A40C37E-8627-4477-980F-7276BBE4E48D",
            "versionEndIncluding": "2.0.6"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "274606A8-662F-47AC-BE67-E6EDC77FC305"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE34E209-ACA2-43AD-A271-DCDF32E04732"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19585106-0895-44F9-B54E-9DF72C8AB4D1"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "186B5DA6-64C9-4E9B-81E2-F96B150FDE17"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBDCDBB6-D6DB-4BF0-9B7B-302056FDE308"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85A428D2-C3B2-4A73-9933-F356FE42D8DC"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3E9D413-0D9F-4E7A-86C8-96D83663899B"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0BAB8C3-D3B2-4522-854B-1F8DCB8FA6BC"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "846DF553-160A-413B-B0B7-B96077DFA255"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:1.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE847B59-CCDB-484A-9143-7F6F689C54C6"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7490679-5D90-4DAE-8641-D430D2AD75ED"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FF1F260-BB6F-4123-ABCB-C82C8099ACCA"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:2.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "094A972B-9F5E-4633-8FB1-5AC88BEFDD89"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:2.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4046872E-5FA8-4D87-9A0D-F78C762B85B2"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:2.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01CDD1BE-174E-433E-8BCF-A9EEAEE4BEE4"
          },
          {
            "criteria": "cpe:2.3:a:stanislas_rolland:static_info_tables:2.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E7A459A-A56A-49B5-9DCE-85D208A63E83"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:typo3:typo3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E66C5ABA-7727-4562-A792-5E450098D520"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References