cve-2010-3605
Vulnerability from cvelistv5
Published
2010-09-24 19:44
Modified
2024-09-17 00:17
Severity ?
Summary
Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References
cve@mitre.orghttp://secunia.com/advisories/41530
cve@mitre.orghttp://typo3.org/extensions/repository/view/powermail/1.5.4
cve@mitre.orghttp://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/41530
af854a3a-2127-422b-91ae-364da2661108http://typo3.org/extensions/repository/view/powermail/1.5.4
af854a3a-2127-422b-91ae-364da2661108http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019Patch, Vendor Advisory
Impacted products
Vendor Product Version
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T03:18:52.444Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://typo3.org/extensions/repository/view/powermail/1.5.4"
          },
          {
            "name": "41530",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/41530"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2010-09-24T19:44:00Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://typo3.org/extensions/repository/view/powermail/1.5.4"
        },
        {
          "name": "41530",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/41530"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2010-3605",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019",
              "refsource": "CONFIRM",
              "url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019"
            },
            {
              "name": "http://typo3.org/extensions/repository/view/powermail/1.5.4",
              "refsource": "CONFIRM",
              "url": "http://typo3.org/extensions/repository/view/powermail/1.5.4"
            },
            {
              "name": "41530",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/41530"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2010-3605",
    "datePublished": "2010-09-24T19:44:00Z",
    "dateReserved": "2010-09-24T00:00:00Z",
    "dateUpdated": "2024-09-17T00:17:31.547Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"1.5.2\", \"matchCriteriaId\": \"E6EC67D0-8B43-4664-88F6-DD4309560D61\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F114F8E-08DE-4C8A-A0F7-567A7A822E0D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB9677B8-7E32-4020-845B-FD31B327491D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1FC6F692-1F1E-4FB4-9EFA-57F0D0938256\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2B9820C6-B4E6-4632-A6D4-D7EA093B1800\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7AEDCA4-5AC0-4970-99B4-9BE02C880AE6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"303CC902-BBDA-417C-90C5-6CC316ED2E90\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A9CDAD5-EE32-47C9-9A94-5FDA002C58BE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2065E944-5F55-4ABF-A20E-F5D4CEED0F7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6C13C053-62AD-4866-AA6E-B6E3862734FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F84BCD42-ACAC-47B7-BC11-162BDF37E5D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DAB0DA1-D646-41F9-9E49-EFB3E3D6753A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.0.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A32130E-4799-41D3-8323-8B3B4B8B5453\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0CC13061-9822-4399-A4A1-EBEED9742EAA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"96CEE2A8-AC38-4581-B56C-399781D73A5D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3C0415B2-89B6-4D75-AD24-DD6152110D8E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C905E945-4195-448E-B2B6-8C7F9C3FABCE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D5897048-EE9A-4DB1-9802-27018E665A26\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4EFC2BB8-B4ED-4DC0-A391-7ACB2DD94E1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"56CF73D1-AA5E-4A6C-95B8-3AD4FD7EC7D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F5D7FEED-4451-43DA-9811-E7F6AA589F89\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A4670C29-5B52-4172-8AED-0AD01229778A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"384FD986-C33D-4A87-A0ED-8EE51AD5BEA5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.1.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A6CF5F4-67D7-4495-B610-13959A10B97D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C5D7E4A4-5887-40B8-860E-91F102A24D89\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7055F350-0EE7-4DE7-8FB6-26A0F2D80224\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C414A1EC-ED36-4113-87EE-496D0CE6C296\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1CC9389-53A8-43D8-9D03-9DBBEA26065C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2597C92A-BE72-4246-B2E7-F7B316E6BECB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF0D0154-08BF-42AB-B97C-C0485BD34E0F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9AFE66F2-621A-4F9A-8D99-C5F96D2BC528\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F32EE91-CF3B-495C-9AEB-CF5F7A49E55C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D79D18B0-E52B-4A80-BA0D-664BE32A667B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"83192D4F-A044-456E-968C-78FD3F8782B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"027479DC-5EA0-4BAE-8F45-DB8CD2E7DBD7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"29168B6A-3D80-4DC7-A69E-E069B1627A18\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"490C3558-53F7-401D-94D4-ABC5A2DCB18A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6783329E-53C6-4FAC-A76A-CDB15C30EE65\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3D85EF2D-D597-4BF8-8D42-65DF495F5B16\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ED148E81-A7BF-4E80-9BA7-1A95D4192521\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FBCFF6F8-1913-4095-BB33-F371EA162CB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E5C372F-D442-44EA-9B74-A724261F7347\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D8B22DF-AC72-4A1D-BAC8-41AA612EEEEF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6293BE50-CEC2-4564-B323-5518CB5F26A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.3.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"46449EDA-9CD5-4FFC-ACC3-AE23D4CC3758\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C94B49F-3249-4FF7-8D71-EFB59EB0B69E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E2CE2E63-4B3B-4F37-983E-084058BB012D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CDA972B4-3307-4A9C-9E9A-F4DCA04B3320\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CAE015AC-7FF4-445A-9112-576ECA6131A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2CA35D7C-6EAA-4E57-B229-771FBAE2616C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1BBAD78D-2EEA-4E84-A31D-A8DB9A4ED6A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"129FBFD3-5DF3-4C03-8416-89C9295F7245\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5696F1A2-1A78-43F0-B52A-13C4B1A9989F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D6F4864-877C-4FBA-99F8-CA138E089B70\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7BFE7AC9-06A3-4BCC-96F4-F978DE2A12AB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE95ADBE-FB92-427A-9C12-6F4DB32AB7C7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0661B887-07D1-4C97-A810-747D34F1854E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA8D2162-DEBA-400A-9BF4-CE2D5C8E59AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BD48C215-3464-49B3-AB9B-FAC18A0D6420\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"90DAF9E4-959D-44C6-85A4-0F9124FDEC96\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A773CA49-4B9D-44AC-92A6-107514320987\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4A774AE5-7A2E-460A-A8E4-FC3AEEFD1F5E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.4.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B7D81F3-C67F-4326-BB7F-414D6ADDAFFF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D29C87E0-772E-4840-BC53-C7AF9D7B8DC1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:alex_kellner:powermail:1.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7ECCDE1E-F3B4-4CD5-8C47-C29BC6C19686\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F1C59B0-CDF2-4F9A-88C7-61E8F18590DB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la extensi\\u00f3n powermail v1.5.3 y versiones anteriores para TYPO3 permite a usuarios remotos inyectar codigo de script web o c\\u00f3digo HTML de su elecci\\u00f3n a trav\\u00e9s de vectores de ataque sin especificar.\"}]",
      "id": "CVE-2010-3605",
      "lastModified": "2024-11-21T01:19:13.060",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:P/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2010-09-24T21:00:33.683",
      "references": "[{\"url\": \"http://secunia.com/advisories/41530\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://typo3.org/extensions/repository/view/powermail/1.5.4\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/41530\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://typo3.org/extensions/repository/view/powermail/1.5.4\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2010-3605\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2010-09-24T21:00:33.683\",\"lastModified\":\"2024-11-21T01:19:13.060\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la extensi\u00f3n powermail v1.5.3 y versiones anteriores para TYPO3 permite a usuarios remotos inyectar codigo de script web o c\u00f3digo HTML de su elecci\u00f3n a trav\u00e9s de vectores de ataque sin especificar.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.5.2\",\"matchCriteriaId\":\"E6EC67D0-8B43-4664-88F6-DD4309560D61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F114F8E-08DE-4C8A-A0F7-567A7A822E0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB9677B8-7E32-4020-845B-FD31B327491D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FC6F692-1F1E-4FB4-9EFA-57F0D0938256\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B9820C6-B4E6-4632-A6D4-D7EA093B1800\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7AEDCA4-5AC0-4970-99B4-9BE02C880AE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"303CC902-BBDA-417C-90C5-6CC316ED2E90\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A9CDAD5-EE32-47C9-9A94-5FDA002C58BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2065E944-5F55-4ABF-A20E-F5D4CEED0F7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C13C053-62AD-4866-AA6E-B6E3862734FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F84BCD42-ACAC-47B7-BC11-162BDF37E5D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DAB0DA1-D646-41F9-9E49-EFB3E3D6753A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A32130E-4799-41D3-8323-8B3B4B8B5453\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CC13061-9822-4399-A4A1-EBEED9742EAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96CEE2A8-AC38-4581-B56C-399781D73A5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C0415B2-89B6-4D75-AD24-DD6152110D8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C905E945-4195-448E-B2B6-8C7F9C3FABCE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5897048-EE9A-4DB1-9802-27018E665A26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4EFC2BB8-B4ED-4DC0-A391-7ACB2DD94E1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56CF73D1-AA5E-4A6C-95B8-3AD4FD7EC7D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5D7FEED-4451-43DA-9811-E7F6AA589F89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4670C29-5B52-4172-8AED-0AD01229778A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"384FD986-C33D-4A87-A0ED-8EE51AD5BEA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A6CF5F4-67D7-4495-B610-13959A10B97D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5D7E4A4-5887-40B8-860E-91F102A24D89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7055F350-0EE7-4DE7-8FB6-26A0F2D80224\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C414A1EC-ED36-4113-87EE-496D0CE6C296\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1CC9389-53A8-43D8-9D03-9DBBEA26065C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2597C92A-BE72-4246-B2E7-F7B316E6BECB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF0D0154-08BF-42AB-B97C-C0485BD34E0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AFE66F2-621A-4F9A-8D99-C5F96D2BC528\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F32EE91-CF3B-495C-9AEB-CF5F7A49E55C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D79D18B0-E52B-4A80-BA0D-664BE32A667B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83192D4F-A044-456E-968C-78FD3F8782B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"027479DC-5EA0-4BAE-8F45-DB8CD2E7DBD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"29168B6A-3D80-4DC7-A69E-E069B1627A18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"490C3558-53F7-401D-94D4-ABC5A2DCB18A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6783329E-53C6-4FAC-A76A-CDB15C30EE65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D85EF2D-D597-4BF8-8D42-65DF495F5B16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED148E81-A7BF-4E80-9BA7-1A95D4192521\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBCFF6F8-1913-4095-BB33-F371EA162CB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E5C372F-D442-44EA-9B74-A724261F7347\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D8B22DF-AC72-4A1D-BAC8-41AA612EEEEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6293BE50-CEC2-4564-B323-5518CB5F26A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.3.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46449EDA-9CD5-4FFC-ACC3-AE23D4CC3758\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C94B49F-3249-4FF7-8D71-EFB59EB0B69E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2CE2E63-4B3B-4F37-983E-084058BB012D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDA972B4-3307-4A9C-9E9A-F4DCA04B3320\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAE015AC-7FF4-445A-9112-576ECA6131A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CA35D7C-6EAA-4E57-B229-771FBAE2616C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BBAD78D-2EEA-4E84-A31D-A8DB9A4ED6A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"129FBFD3-5DF3-4C03-8416-89C9295F7245\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5696F1A2-1A78-43F0-B52A-13C4B1A9989F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D6F4864-877C-4FBA-99F8-CA138E089B70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BFE7AC9-06A3-4BCC-96F4-F978DE2A12AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE95ADBE-FB92-427A-9C12-6F4DB32AB7C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0661B887-07D1-4C97-A810-747D34F1854E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA8D2162-DEBA-400A-9BF4-CE2D5C8E59AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD48C215-3464-49B3-AB9B-FAC18A0D6420\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90DAF9E4-959D-44C6-85A4-0F9124FDEC96\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A773CA49-4B9D-44AC-92A6-107514320987\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A774AE5-7A2E-460A-A8E4-FC3AEEFD1F5E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B7D81F3-C67F-4326-BB7F-414D6ADDAFFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D29C87E0-772E-4840-BC53-C7AF9D7B8DC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:alex_kellner:powermail:1.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7ECCDE1E-F3B4-4CD5-8C47-C29BC6C19686\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F1C59B0-CDF2-4F9A-88C7-61E8F18590DB\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/41530\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://typo3.org/extensions/repository/view/powermail/1.5.4\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/41530\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://typo3.org/extensions/repository/view/powermail/1.5.4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.