CVE-2013-6289

MEDIUM4.3EPSS 0.26%

Apache Solr for TYPO3 (solr) extension is vulnerable to Cross-site scripting (XSS)

Published: 5/17/2022Modified: 11/8/2023

Description

Cross-site scripting (XSS) vulnerability in the Apache Solr for TYPO3 (solr) extension before 2.8.3 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected packages (1)

Packagist/apache-solr-for-typo3/solrfrom 0, < 2.8.3

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM4.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

References (8)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2013-6289
PATCHhttps://github.com/TYPO3-Solr/ext-solr
WEBhttp://secunia.com/advisories/54978
WEBhttps://github.com/TYPO3-Solr/ext-solr/commit/57e3b06b498668e093b9b86f32f7509d12d6ae4e
WEBhttps://github.com/TYPO3-Solr/ext-solr/commit/7ed1e9fc03f2036d80a416178493da72c620f7e9
WEBhttp://typo3.org/extensions/repository/view/solr
WEBhttp://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009
WEBhttp://www.securityfocus.com/bid/62674