CVE-2013-6289
MEDIUM4.3EPSS 0.26%Apache Solr for TYPO3 (solr) extension is vulnerable to Cross-site scripting (XSS)
發布日:2022/5/17修改日:2023/11/8
描述
Cross-site scripting (XSS) vulnerability in the Apache Solr for TYPO3 (solr) extension before 2.8.3 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
受影響套件(1)
- Packagist/apache-solr-for-typo3/solrfrom 0, < 2.8.3
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.3 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
參考連結(8)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2013-6289
- PATCHhttps://github.com/TYPO3-Solr/ext-solr
- WEBhttp://secunia.com/advisories/54978
- WEBhttps://github.com/TYPO3-Solr/ext-solr/commit/57e3b06b498668e093b9b86f32f7509d12d6ae4e
- WEBhttps://github.com/TYPO3-Solr/ext-solr/commit/7ed1e9fc03f2036d80a416178493da72c620f7e9
- WEBhttp://typo3.org/extensions/repository/view/solr
- WEBhttp://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009
- WEBhttp://www.securityfocus.com/bid/62674