Vulnerability Details : CVE-2013-5303
Unspecified vulnerability in the Store Locator (locator) extension before 3.1.5 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."
Exploit prediction scoring system (EPSS) score for CVE-2013-5303
Probability of exploitation activity in the next 30 days: 0.55%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 74 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2013-5303
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2013-5303
-
http://www.securityfocus.com/bid/61606
RETIRED: TYPO3 Store Locator Extension Multiple Unspecified Security Vulnerabilities
-
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-013
Page Not FoundPatch;Vendor Advisory
-
http://typo3.org/extensions/repository/view/locator
Store Locator (locator)Patch
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/86233
Store Locator extension for TYPO3 unserialize() code execution CVE-2013-5303 Vulnerability Report
Products affected by CVE-2013-5303
- cpe:2.3:a:joachim_ruhs:locator:*:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:2.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.2.8:*:*:*:*:*:*:*