Lucene search

MitreCVE-2010-1011

HistoryMar 19, 2010 - 7:00 p.m.

CVE-2010-1011

2010-03-1919:00:00

CWE-79

mitre

web.nvd.nist.gov

cve-2010-1011

cross-site scripting

xss

mydashboard

typo3

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

49.0%

JSON

Cross-site scripting (XSS) vulnerability in the myDashboard (mydashboard) extension 0.1.13 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

Nvd

Node

tim_lochmuellermydashboardRange≤0.1.13

tim_lochmuellermydashboardMatch0.0.5

tim_lochmuellermydashboardMatch0.0.6

tim_lochmuellermydashboardMatch0.0.7

tim_lochmuellermydashboardMatch0.0.8

tim_lochmuellermydashboardMatch0.0.9

tim_lochmuellermydashboardMatch0.0.10

tim_lochmuellermydashboardMatch0.1.0

tim_lochmuellermydashboardMatch0.1.1

tim_lochmuellermydashboardMatch0.1.2

tim_lochmuellermydashboardMatch0.1.3

tim_lochmuellermydashboardMatch0.1.4

tim_lochmuellermydashboardMatch0.1.5

tim_lochmuellermydashboardMatch0.1.6

tim_lochmuellermydashboardMatch0.1.7

tim_lochmuellermydashboardMatch0.1.8

AND

typo3typo3

VendorProductVersionCPE
tim_lochmuellermydashboard*cpe:2.3:a:tim_lochmueller:mydashboard:*:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.0.5cpe:2.3:a:tim_lochmueller:mydashboard:0.0.5:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.0.6cpe:2.3:a:tim_lochmueller:mydashboard:0.0.6:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.0.7cpe:2.3:a:tim_lochmueller:mydashboard:0.0.7:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.0.8cpe:2.3:a:tim_lochmueller:mydashboard:0.0.8:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.0.9cpe:2.3:a:tim_lochmueller:mydashboard:0.0.9:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.0.10cpe:2.3:a:tim_lochmueller:mydashboard:0.0.10:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.1.0cpe:2.3:a:tim_lochmueller:mydashboard:0.1.0:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.1.1cpe:2.3:a:tim_lochmueller:mydashboard:0.1.1:*:*:*:*:*:*:*
tim_lochmuellermydashboard0.1.2cpe:2.3:a:tim_lochmueller:mydashboard:0.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tim_lochmueller	mydashboard	*	cpe:2.3:a:tim_lochmueller:mydashboard::::::::
tim_lochmueller	mydashboard	0.0.5	cpe:2.3:a:tim_lochmueller:mydashboard:0.0.5:::::::*
tim_lochmueller	mydashboard	0.0.6	cpe:2.3:a:tim_lochmueller:mydashboard:0.0.6:::::::*
tim_lochmueller	mydashboard	0.0.7	cpe:2.3:a:tim_lochmueller:mydashboard:0.0.7:::::::*
tim_lochmueller	mydashboard	0.0.8	cpe:2.3:a:tim_lochmueller:mydashboard:0.0.8:::::::*
tim_lochmueller	mydashboard	0.0.9	cpe:2.3:a:tim_lochmueller:mydashboard:0.0.9:::::::*
tim_lochmueller	mydashboard	0.0.10	cpe:2.3:a:tim_lochmueller:mydashboard:0.0.10:::::::*
tim_lochmueller	mydashboard	0.1.0	cpe:2.3:a:tim_lochmueller:mydashboard:0.1.0:::::::*
tim_lochmueller	mydashboard	0.1.1	cpe:2.3:a:tim_lochmueller:mydashboard:0.1.1:::::::*
tim_lochmueller	mydashboard	0.1.2	cpe:2.3:a:tim_lochmueller:mydashboard:0.1.2:::::::*

Rows per page:

1-10 of 171

References

typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/

www.securityfocus.com/bid/38795

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

49.0%

JSON

Related for CVE-2010-1011