Vulnerabilities > CVE-2013-5303 - Security vulnerability in TYPO3 Store Locator Extension

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

joachim-ruhs

typo3

critical

NVD

Published: 2013-08-16

Updated: 2017-08-29

Summary

Unspecified vulnerability in the Store Locator (locator) extension before 3.1.5 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."

Vulnerable Configurations

Part	Description	Count
Application	Joachim_Ruhs Joachim Ruhs Locator 1.0.6 Joachim Ruhs Locator 1.0.7 Joachim Ruhs Locator 1.1.0 Joachim Ruhs Locator 1.1.8 Joachim Ruhs Locator 1.2.6 Joachim Ruhs Locator 1.2.8 Joachim Ruhs Locator 2.9.0 Joachim Ruhs Locator 2.9.1	8
Application	Typo3 Typo3 Typo3 -	1

References

http://osvdb.org/95967
http://secunia.com/advisories/54350
http://typo3.org/extensions/repository/view/locator
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-013
http://www.securityfocus.com/bid/61606
https://exchange.xforce.ibmcloud.com/vulnerabilities/86233