CVE-2008-2274

{"id": "CVE-2008-2274", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2008-05-16T12:54:00.000", "references": [{"url": "http://secunia.com/advisories/30275", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://typo3.org/teams/security/security-bulletins/typo3-20080515-1/", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/29239", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42443", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in the sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, and 2.5.0 to 2.5.9 extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."}, {"lang": "es", "value": "Vulneranilidad de secuencias de comandos en sitios cruzados (XSS) en la extensi\u00f3n sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, y 2.5.0 to 2.5.9 para TYPO3 permite a atacantes remotos inyectar web script o HTML a trav\u00e9s de vectores no especificados."}], "lastModified": "2017-08-08T01:30:54.260", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:1.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E1D4AE1-F62C-4C17-858F-CE269BBF2203"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:1.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EB2B69E-092D-4579-ADA0-9BB8FBFCAA7F"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85DDFF28-5B60-4757-853C-82B97C3744C2"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D81DDE7-FD8F-4564-A808-4F4C22F1F1A5"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23615B6F-120A-4F4B-A6B9-01FD1794EFB2"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "761F8A77-2E93-4116-8FF3-D1D6F8085248"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F258019-4C83-4A28-8F47-5B0DEF788706"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61B59628-6391-4ACC-9D43-52AA93F31CED"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E0A8760-E098-4409-9FF0-13FE532A367B"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B052AD1C-F293-4B5B-9A96-F527ED2E66B3"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2969BC82-0931-46F0-A005-F1C1C50DB330"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E222547-2B82-43EC-B80C-CA94815C6D06"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3290006-FA7B-49D0-B944-A32E7D454CD8"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.3.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BB1C3C6-3855-4006-A20C-E499898BF8CE"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1497C18C-18F9-433A-BF85-36FE1BDDE824"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "674FE3A7-1189-4F7A-864B-05CF3F2C1823"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85BFBFC8-1573-44BD-8FD0-A7AF34819734"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "366F4DDF-D184-4D89-81E7-64FECB72F87B"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3DE826E-1DA0-4EBC-AC04-F212EF01CAB8"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "238E7EC9-5876-45D6-BACE-914C7D513587"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A879A171-CE7A-4759-BF3B-D33EE6061F1A"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60F64805-8FCA-4F22-9BCE-62B13D46481C"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF57F551-000E-49D0-AEF3-816D677934AB"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C9BD2DB-E8AF-4175-808A-DD4562E38F3D"}, {"criteria": "cpe:2.3:a:typo3:sr_feuser_register_extension:2.5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5EA47435-AC11-4D73-9C7A-6C59EED6611F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}