fkie_cve-2010-3605
Vulnerability from fkie_nvd
Published
2010-09-24 21:00
Modified
2025-04-11 00:51
Severity ?
Summary
Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E6EC67D0-8B43-4664-88F6-DD4309560D61",
"versionEndIncluding": "1.5.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "5F114F8E-08DE-4C8A-A0F7-567A7A822E0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "BB9677B8-7E32-4020-845B-FD31B327491D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "1FC6F692-1F1E-4FB4-9EFA-57F0D0938256",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "2B9820C6-B4E6-4632-A6D4-D7EA093B1800",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "D7AEDCA4-5AC0-4970-99B4-9BE02C880AE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "303CC902-BBDA-417C-90C5-6CC316ED2E90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "2A9CDAD5-EE32-47C9-9A94-5FDA002C58BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "2065E944-5F55-4ABF-A20E-F5D4CEED0F7F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "6C13C053-62AD-4866-AA6E-B6E3862734FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "F84BCD42-ACAC-47B7-BC11-162BDF37E5D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "8DAB0DA1-D646-41F9-9E49-EFB3E3D6753A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "2A32130E-4799-41D3-8323-8B3B4B8B5453",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "0CC13061-9822-4399-A4A1-EBEED9742EAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "96CEE2A8-AC38-4581-B56C-399781D73A5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3C0415B2-89B6-4D75-AD24-DD6152110D8E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "C905E945-4195-448E-B2B6-8C7F9C3FABCE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D5897048-EE9A-4DB1-9802-27018E665A26",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "4EFC2BB8-B4ED-4DC0-A391-7ACB2DD94E1B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "56CF73D1-AA5E-4A6C-95B8-3AD4FD7EC7D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.7:*:*:*:*:*:*:*",
"matchCriteriaId": "F5D7FEED-4451-43DA-9811-E7F6AA589F89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.8:*:*:*:*:*:*:*",
"matchCriteriaId": "A4670C29-5B52-4172-8AED-0AD01229778A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.9:*:*:*:*:*:*:*",
"matchCriteriaId": "384FD986-C33D-4A87-A0ED-8EE51AD5BEA5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.10:*:*:*:*:*:*:*",
"matchCriteriaId": "1A6CF5F4-67D7-4495-B610-13959A10B97D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C5D7E4A4-5887-40B8-860E-91F102A24D89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7055F350-0EE7-4DE7-8FB6-26A0F2D80224",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C414A1EC-ED36-4113-87EE-496D0CE6C296",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "D1CC9389-53A8-43D8-9D03-9DBBEA26065C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "2597C92A-BE72-4246-B2E7-F7B316E6BECB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "AF0D0154-08BF-42AB-B97C-C0485BD34E0F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "9AFE66F2-621A-4F9A-8D99-C5F96D2BC528",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "8F32EE91-CF3B-495C-9AEB-CF5F7A49E55C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D79D18B0-E52B-4A80-BA0D-664BE32A667B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "83192D4F-A044-456E-968C-78FD3F8782B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "027479DC-5EA0-4BAE-8F45-DB8CD2E7DBD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "29168B6A-3D80-4DC7-A69E-E069B1627A18",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.8:*:*:*:*:*:*:*",
"matchCriteriaId": "490C3558-53F7-401D-94D4-ABC5A2DCB18A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.9:*:*:*:*:*:*:*",
"matchCriteriaId": "6783329E-53C6-4FAC-A76A-CDB15C30EE65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.10:*:*:*:*:*:*:*",
"matchCriteriaId": "3D85EF2D-D597-4BF8-8D42-65DF495F5B16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.11:*:*:*:*:*:*:*",
"matchCriteriaId": "ED148E81-A7BF-4E80-9BA7-1A95D4192521",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.12:*:*:*:*:*:*:*",
"matchCriteriaId": "FBCFF6F8-1913-4095-BB33-F371EA162CB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.13:*:*:*:*:*:*:*",
"matchCriteriaId": "6E5C372F-D442-44EA-9B74-A724261F7347",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.14:*:*:*:*:*:*:*",
"matchCriteriaId": "5D8B22DF-AC72-4A1D-BAC8-41AA612EEEEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.15:*:*:*:*:*:*:*",
"matchCriteriaId": "6293BE50-CEC2-4564-B323-5518CB5F26A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.16:*:*:*:*:*:*:*",
"matchCriteriaId": "46449EDA-9CD5-4FFC-ACC3-AE23D4CC3758",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1C94B49F-3249-4FF7-8D71-EFB59EB0B69E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E2CE2E63-4B3B-4F37-983E-084058BB012D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "CDA972B4-3307-4A9C-9E9A-F4DCA04B3320",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "CAE015AC-7FF4-445A-9112-576ECA6131A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2CA35D7C-6EAA-4E57-B229-771FBAE2616C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "1BBAD78D-2EEA-4E84-A31D-A8DB9A4ED6A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "129FBFD3-5DF3-4C03-8416-89C9295F7245",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.8:*:*:*:*:*:*:*",
"matchCriteriaId": "5696F1A2-1A78-43F0-B52A-13C4B1A9989F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "6D6F4864-877C-4FBA-99F8-CA138E089B70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.10:*:*:*:*:*:*:*",
"matchCriteriaId": "7BFE7AC9-06A3-4BCC-96F4-F978DE2A12AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.11:*:*:*:*:*:*:*",
"matchCriteriaId": "CE95ADBE-FB92-427A-9C12-6F4DB32AB7C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.12:*:*:*:*:*:*:*",
"matchCriteriaId": "0661B887-07D1-4C97-A810-747D34F1854E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.13:*:*:*:*:*:*:*",
"matchCriteriaId": "FA8D2162-DEBA-400A-9BF4-CE2D5C8E59AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.14:*:*:*:*:*:*:*",
"matchCriteriaId": "BD48C215-3464-49B3-AB9B-FAC18A0D6420",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.15:*:*:*:*:*:*:*",
"matchCriteriaId": "90DAF9E4-959D-44C6-85A4-0F9124FDEC96",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "A773CA49-4B9D-44AC-92A6-107514320987",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.17:*:*:*:*:*:*:*",
"matchCriteriaId": "4A774AE5-7A2E-460A-A8E4-FC3AEEFD1F5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.18:*:*:*:*:*:*:*",
"matchCriteriaId": "1B7D81F3-C67F-4326-BB7F-414D6ADDAFFF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "D29C87E0-772E-4840-BC53-C7AF9D7B8DC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:alex_kellner:powermail:1.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7ECCDE1E-F3B4-4CD5-8C47-C29BC6C19686",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5F1C59B0-CDF2-4F9A-88C7-61E8F18590DB",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
},
{
"lang": "es",
"value": "Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la extensi\u00f3n powermail v1.5.3 y versiones anteriores para TYPO3 permite a usuarios remotos inyectar codigo de script web o c\u00f3digo HTML de su elecci\u00f3n a trav\u00e9s de vectores de ataque sin especificar."
}
],
"id": "CVE-2010-3605",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2010-09-24T21:00:33.683",
"references": [
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/41530"
},
{
"source": "cve@mitre.org",
"url": "http://typo3.org/extensions/repository/view/powermail/1.5.4"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/41530"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://typo3.org/extensions/repository/view/powermail/1.5.4"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…