From 4ff6acc90ecae73e53f0081da2d4afe9c9a62642 Mon Sep 17 00:00:00 2001 From: Roland Waldner Date: Sun, 29 Nov 2015 17:14:11 +0100 Subject: [PATCH 1/3] [TASK] Add (almost) every security bulletin for "TYPO3 community extensions hosted on TER" This commit adds almost every security bulletin for every community extension of the CMS "TYPO3" hosted on TYPO3's "TYPO3 extension repository" (TER). About 70 security bulletins are not included in this pull request. As these bulletins need some more manual work all missing security bulletins will be pushed in the next days if this commit is accepted. 'php validator.php' notes that all included packages are 'Invalid composer package'. As far as I can see this is caused by the fact that TER hosted TYPO3 extensions are not hosted on packagist.org but on TYPO3's own composer repository at https://composer.typo3.org/. I hope it is possible to use this security advisories anyway. Some information about that can be found at composer.typo3.org. --- typo3-ter/air-filemanager/2008-05-15.yaml | 8 ++++++++ typo3-ter/ameos-dragndropupload/2011-09-07.yaml | 8 ++++++++ typo3-ter/ameos-dragndropupload/2014-12-15.yaml | 8 ++++++++ typo3-ter/ameos-formidable/2012-06-07.yaml | 8 ++++++++ typo3-ter/beko-beuserlog/2015-06-15.yaml | 8 ++++++++ typo3-ter/cal/2009-12-01.yaml | 8 ++++++++ typo3-ter/cal/2010-03-02.yaml | 8 ++++++++ typo3-ter/cc-awstats/2013-09-25.yaml | 8 ++++++++ typo3-ter/commerce/2008-10-20.yaml | 8 ++++++++ typo3-ter/commerce/2009-08-18.yaml | 8 ++++++++ typo3-ter/commerce/2012-12-21.yaml | 8 ++++++++ typo3-ter/content-rating-extbase/2015-01-09.yaml | 8 ++++++++ typo3-ter/content-rating/2015-01-09.yaml | 8 ++++++++ typo3-ter/cooluri/2013-02-19.yaml | 8 ++++++++ typo3-ter/dam/2011-01-26.yaml | 8 ++++++++ typo3-ter/dce/2014-10-17.yaml | 8 ++++++++ typo3-ter/devlog/2015-06-15.yaml | 8 ++++++++ typo3-ter/direct-mail-subscription/2011-09-07.yaml | 8 ++++++++ typo3-ter/direct-mail-subscription/2014-02-12.yaml | 8 ++++++++ typo3-ter/direct-mail-subscription/2015-01-16.yaml | 8 ++++++++ typo3-ter/direct-mail/2009-12-01.yaml | 8 ++++++++ typo3-ter/direct-mail/2011-03-15.yaml | 8 ++++++++ typo3-ter/direct-mail/2013-09-25.yaml | 8 ++++++++ typo3-ter/dmmjobcontrol/2014-09-25.yaml | 8 ++++++++ typo3-ter/error-404-handling/2010-04-14.yaml | 8 ++++++++ typo3-ter/eu-ldap/2015-09-30.yaml | 8 ++++++++ typo3-ter/fal-sftp/2014-10-17.yaml | 8 ++++++++ typo3-ter/feupload/2015-06-15.yaml | 8 ++++++++ typo3-ter/formhandler/2011-08-25.yaml | 8 ++++++++ typo3-ter/formhandler/2012-10-25.yaml | 8 ++++++++ typo3-ter/formhandler/2013-08-05.yaml | 8 ++++++++ typo3-ter/formhandler/2013-09-25.yaml | 8 ++++++++ typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml | 8 ++++++++ typo3-ter/jm-gallery/2011-08-03.yaml | 8 ++++++++ typo3-ter/jobfair/2015-06-15.yaml | 8 ++++++++ typo3-ter/js-faq/2015-06-15.yaml | 8 ++++++++ typo3-ter/ke-search/2011-06-29.yaml | 8 ++++++++ typo3-ter/ke-stats/2008-05-13.yaml | 8 ++++++++ typo3-ter/kj-imagelightbox2/2008-05-27.yaml | 8 ++++++++ typo3-ter/locator/2015-06-15.yaml | 8 ++++++++ typo3-ter/mh-httpbl/2015-09-30.yaml | 8 ++++++++ typo3-ter/mkforms/2015-09-30.yaml | 8 ++++++++ typo3-ter/mm-forum/2010-03-16.yaml | 8 ++++++++ typo3-ter/mm-forum/2014-02-12.yaml | 8 ++++++++ typo3-ter/multishop/2013-06-03.yaml | 8 ++++++++ typo3-ter/ncgov-smoelenboek/2015-06-15.yaml | 8 ++++++++ typo3-ter/news/2015-09-30.yaml | 8 ++++++++ typo3-ter/pagenotfoundhandling/2015-06-29.yaml | 8 ++++++++ typo3-ter/pbsurvey/2008-05-13.yaml | 8 ++++++++ typo3-ter/pbsurvey/2011-08-25.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2009-01-23.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2011-05-23.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2011-07-06.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2011-07-25.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2011-08-26.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2011-09-15.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2011-10-18.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2011-11-15.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2014-09-26.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2014-11-05.yaml | 8 ++++++++ typo3-ter/phpmyadmin/2014-12-08.yaml | 8 ++++++++ typo3-ter/powermail/2011-05-11.yaml | 8 ++++++++ typo3-ter/powermail/2012-03-28.yaml | 8 ++++++++ typo3-ter/powermail/2012-06-07.yaml | 8 ++++++++ typo3-ter/powermail/2014-04-10.yaml | 8 ++++++++ typo3-ter/pt-extbase/2014-02-12.yaml | 8 ++++++++ typo3-ter/realurl/2013-09-25.yaml | 8 ++++++++ typo3-ter/rgsmoothgallery/2011-09-07.yaml | 8 ++++++++ typo3-ter/rlmp-eventdb/2008-05-13.yaml | 8 ++++++++ typo3-ter/sb-akronymmanager/2015-06-18.yaml | 8 ++++++++ typo3-ter/seminars/2012-07-03.yaml | 8 ++++++++ typo3-ter/seo-basics/2012-03-28.yaml | 8 ++++++++ typo3-ter/seo-basics/2012-06-07.yaml | 8 ++++++++ typo3-ter/sg-zfelib/2008-05-27.yaml | 8 ++++++++ typo3-ter/si-bibtex/2014-12-15.yaml | 8 ++++++++ typo3-ter/solr/2013-09-25.yaml | 8 ++++++++ typo3-ter/sr-feuser-register/2010-04-14.yaml | 8 ++++++++ typo3-ter/sr-feuser-register/2010-07-28.yaml | 8 ++++++++ typo3-ter/sr-feuser-register/2012-02-23.yaml | 8 ++++++++ typo3-ter/sr-feuser-register/2013-08-05.yaml | 8 ++++++++ typo3-ter/sr-sendcard/2008-07-01.yaml | 8 ++++++++ typo3-ter/static-info-tables/2013-02-19.yaml | 8 ++++++++ typo3-ter/t3adminer/2015-09-30.yaml | 8 ++++++++ typo3-ter/t3blog/2010-02-01.yaml | 8 ++++++++ typo3-ter/t3blog/2011-09-27.yaml | 8 ++++++++ typo3-ter/t3m/2009-08-18.yaml | 8 ++++++++ typo3-ter/t3quixplorer/2015-09-30.yaml | 8 ++++++++ typo3-ter/th-mailformplus/2008-05-05.yaml | 8 ++++++++ typo3-ter/th-mailformplus/2011-09-07.yaml | 8 ++++++++ typo3-ter/tipafriend/2010-04-14.yaml | 8 ++++++++ typo3-ter/tt-news/2014-02-12.yaml | 8 ++++++++ typo3-ter/ve-guestbook/2009-06-16.yaml | 8 ++++++++ typo3-ter/webdav/2014-11-27.yaml | 8 ++++++++ typo3-ter/wec-discussion/2008-07-01.yaml | 8 ++++++++ typo3-ter/wec-discussion/2011-04-07.yaml | 8 ++++++++ typo3-ter/wf-gallery/2014-12-15.yaml | 8 ++++++++ typo3-ter/wt-directory/2015-06-15.yaml | 8 ++++++++ typo3-ter/yag/2014-02-12.yaml | 8 ++++++++ typo3-ter/zend-framework/2015-09-30.yaml | 8 ++++++++ 99 files changed, 792 insertions(+) create mode 100644 typo3-ter/air-filemanager/2008-05-15.yaml create mode 100644 typo3-ter/ameos-dragndropupload/2011-09-07.yaml create mode 100644 typo3-ter/ameos-dragndropupload/2014-12-15.yaml create mode 100644 typo3-ter/ameos-formidable/2012-06-07.yaml create mode 100644 typo3-ter/beko-beuserlog/2015-06-15.yaml create mode 100644 typo3-ter/cal/2009-12-01.yaml create mode 100644 typo3-ter/cal/2010-03-02.yaml create mode 100644 typo3-ter/cc-awstats/2013-09-25.yaml create mode 100644 typo3-ter/commerce/2008-10-20.yaml create mode 100644 typo3-ter/commerce/2009-08-18.yaml create mode 100644 typo3-ter/commerce/2012-12-21.yaml create mode 100644 typo3-ter/content-rating-extbase/2015-01-09.yaml create mode 100644 typo3-ter/content-rating/2015-01-09.yaml create mode 100644 typo3-ter/cooluri/2013-02-19.yaml create mode 100644 typo3-ter/dam/2011-01-26.yaml create mode 100644 typo3-ter/dce/2014-10-17.yaml create mode 100644 typo3-ter/devlog/2015-06-15.yaml create mode 100644 typo3-ter/direct-mail-subscription/2011-09-07.yaml create mode 100644 typo3-ter/direct-mail-subscription/2014-02-12.yaml create mode 100644 typo3-ter/direct-mail-subscription/2015-01-16.yaml create mode 100644 typo3-ter/direct-mail/2009-12-01.yaml create mode 100644 typo3-ter/direct-mail/2011-03-15.yaml create mode 100644 typo3-ter/direct-mail/2013-09-25.yaml create mode 100644 typo3-ter/dmmjobcontrol/2014-09-25.yaml create mode 100644 typo3-ter/error-404-handling/2010-04-14.yaml create mode 100644 typo3-ter/eu-ldap/2015-09-30.yaml create mode 100644 typo3-ter/fal-sftp/2014-10-17.yaml create mode 100644 typo3-ter/feupload/2015-06-15.yaml create mode 100644 typo3-ter/formhandler/2011-08-25.yaml create mode 100644 typo3-ter/formhandler/2012-10-25.yaml create mode 100644 typo3-ter/formhandler/2013-08-05.yaml create mode 100644 typo3-ter/formhandler/2013-09-25.yaml create mode 100644 typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml create mode 100644 typo3-ter/jm-gallery/2011-08-03.yaml create mode 100644 typo3-ter/jobfair/2015-06-15.yaml create mode 100644 typo3-ter/js-faq/2015-06-15.yaml create mode 100644 typo3-ter/ke-search/2011-06-29.yaml create mode 100644 typo3-ter/ke-stats/2008-05-13.yaml create mode 100644 typo3-ter/kj-imagelightbox2/2008-05-27.yaml create mode 100644 typo3-ter/locator/2015-06-15.yaml create mode 100644 typo3-ter/mh-httpbl/2015-09-30.yaml create mode 100644 typo3-ter/mkforms/2015-09-30.yaml create mode 100644 typo3-ter/mm-forum/2010-03-16.yaml create mode 100644 typo3-ter/mm-forum/2014-02-12.yaml create mode 100644 typo3-ter/multishop/2013-06-03.yaml create mode 100644 typo3-ter/ncgov-smoelenboek/2015-06-15.yaml create mode 100644 typo3-ter/news/2015-09-30.yaml create mode 100644 typo3-ter/pagenotfoundhandling/2015-06-29.yaml create mode 100644 typo3-ter/pbsurvey/2008-05-13.yaml create mode 100644 typo3-ter/pbsurvey/2011-08-25.yaml create mode 100644 typo3-ter/phpmyadmin/2009-01-23.yaml create mode 100644 typo3-ter/phpmyadmin/2011-05-23.yaml create mode 100644 typo3-ter/phpmyadmin/2011-07-06.yaml create mode 100644 typo3-ter/phpmyadmin/2011-07-25.yaml create mode 100644 typo3-ter/phpmyadmin/2011-08-26.yaml create mode 100644 typo3-ter/phpmyadmin/2011-09-15.yaml create mode 100644 typo3-ter/phpmyadmin/2011-10-18.yaml create mode 100644 typo3-ter/phpmyadmin/2011-11-15.yaml create mode 100644 typo3-ter/phpmyadmin/2014-09-26.yaml create mode 100644 typo3-ter/phpmyadmin/2014-11-05.yaml create mode 100644 typo3-ter/phpmyadmin/2014-12-08.yaml create mode 100644 typo3-ter/powermail/2011-05-11.yaml create mode 100644 typo3-ter/powermail/2012-03-28.yaml create mode 100644 typo3-ter/powermail/2012-06-07.yaml create mode 100644 typo3-ter/powermail/2014-04-10.yaml create mode 100644 typo3-ter/pt-extbase/2014-02-12.yaml create mode 100644 typo3-ter/realurl/2013-09-25.yaml create mode 100644 typo3-ter/rgsmoothgallery/2011-09-07.yaml create mode 100644 typo3-ter/rlmp-eventdb/2008-05-13.yaml create mode 100644 typo3-ter/sb-akronymmanager/2015-06-18.yaml create mode 100644 typo3-ter/seminars/2012-07-03.yaml create mode 100644 typo3-ter/seo-basics/2012-03-28.yaml create mode 100644 typo3-ter/seo-basics/2012-06-07.yaml create mode 100644 typo3-ter/sg-zfelib/2008-05-27.yaml create mode 100644 typo3-ter/si-bibtex/2014-12-15.yaml create mode 100644 typo3-ter/solr/2013-09-25.yaml create mode 100644 typo3-ter/sr-feuser-register/2010-04-14.yaml create mode 100644 typo3-ter/sr-feuser-register/2010-07-28.yaml create mode 100644 typo3-ter/sr-feuser-register/2012-02-23.yaml create mode 100644 typo3-ter/sr-feuser-register/2013-08-05.yaml create mode 100644 typo3-ter/sr-sendcard/2008-07-01.yaml create mode 100644 typo3-ter/static-info-tables/2013-02-19.yaml create mode 100644 typo3-ter/t3adminer/2015-09-30.yaml create mode 100644 typo3-ter/t3blog/2010-02-01.yaml create mode 100644 typo3-ter/t3blog/2011-09-27.yaml create mode 100644 typo3-ter/t3m/2009-08-18.yaml create mode 100644 typo3-ter/t3quixplorer/2015-09-30.yaml create mode 100644 typo3-ter/th-mailformplus/2008-05-05.yaml create mode 100644 typo3-ter/th-mailformplus/2011-09-07.yaml create mode 100644 typo3-ter/tipafriend/2010-04-14.yaml create mode 100644 typo3-ter/tt-news/2014-02-12.yaml create mode 100644 typo3-ter/ve-guestbook/2009-06-16.yaml create mode 100644 typo3-ter/webdav/2014-11-27.yaml create mode 100644 typo3-ter/wec-discussion/2008-07-01.yaml create mode 100644 typo3-ter/wec-discussion/2011-04-07.yaml create mode 100644 typo3-ter/wf-gallery/2014-12-15.yaml create mode 100644 typo3-ter/wt-directory/2015-06-15.yaml create mode 100644 typo3-ter/yag/2014-02-12.yaml create mode 100644 typo3-ter/zend-framework/2015-09-30.yaml diff --git a/typo3-ter/air-filemanager/2008-05-15.yaml b/typo3-ter/air-filemanager/2008-05-15.yaml new file mode 100644 index 000000000..3abbfec03 --- /dev/null +++ b/typo3-ter/air-filemanager/2008-05-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080515-2: Multiple vulnerabilities in extension Frontend Filemanager (air_filemanager)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080515-2/ +cve: +branches: + master: + time: 2008-05-15 12:00 + versions: [<=0.6.0] +reference: composer://typo3-ter/air-filemanager diff --git a/typo3-ter/ameos-dragndropupload/2011-09-07.yaml b/typo3-ter/ameos-dragndropupload/2011-09-07.yaml new file mode 100644 index 000000000..d443039df --- /dev/null +++ b/typo3-ter/ameos-dragndropupload/2011-09-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-010: A vulnerability in extension Drag Drop Mass Upload (ameos_dragndropupload)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-010/ +cve: +branches: + master: + time: 2011-09-07 12:00 + versions: [<=2.0.2] +reference: composer://typo3-ter/ameos-dragndropupload diff --git a/typo3-ter/ameos-dragndropupload/2014-12-15.yaml b/typo3-ter/ameos-dragndropupload/2014-12-15.yaml new file mode 100644 index 000000000..39c39ddd7 --- /dev/null +++ b/typo3-ter/ameos-dragndropupload/2014-12-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-019: Multiple vulnerabilities in Drag Drop Mass Upload (ameos_dragndropupload)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-019/ +cve: +branches: + master: + time: 2014-12-15 12:00 + versions: [<=3.1.1] +reference: composer://typo3-ter/ameos-dragndropupload diff --git a/typo3-ter/ameos-formidable/2012-06-07.yaml b/typo3-ter/ameos-formidable/2012-06-07.yaml new file mode 100644 index 000000000..4e2c7ff06 --- /dev/null +++ b/typo3-ter/ameos-formidable/2012-06-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-008: Cross-site scripting vulnerability in extension Ameos Formidable (ameos_formidable)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-008/ +cve: +branches: + master: + time: 2012-06-07 12:00 + versions: [<=1.1.373] +reference: composer://typo3-ter/ameos-formidable diff --git a/typo3-ter/beko-beuserlog/2015-06-15.yaml b/typo3-ter/beko-beuserlog/2015-06-15.yaml new file mode 100644 index 000000000..a10c5113f --- /dev/null +++ b/typo3-ter/beko-beuserlog/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-007: Cross-Site Scripting in extension BE User Log (beko_beuserlog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-007/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=1.1.1] +reference: composer://typo3-ter/beko-beuserlog diff --git a/typo3-ter/cal/2009-12-01.yaml b/typo3-ter/cal/2009-12-01.yaml new file mode 100644 index 000000000..e9f74f7f8 --- /dev/null +++ b/typo3-ter/cal/2009-12-01.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2009-019: Blind SQL Injection vulnerability in extension Calendar Base (cal)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-019/ +cve: +branches: + master: + time: 2009-12-01 12:00 + versions: [<=1.2.0] +reference: composer://typo3-ter/cal diff --git a/typo3-ter/cal/2010-03-02.yaml b/typo3-ter/cal/2010-03-02.yaml new file mode 100644 index 000000000..b0d5e402d --- /dev/null +++ b/typo3-ter/cal/2010-03-02.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2010-005: Blind SQL Injection vulnerability in extension Calendar Base (cal)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-005/ +cve: +branches: + master: + time: 2010-03-02 12:00 + versions: [<=1.3.1] +reference: composer://typo3-ter/cal diff --git a/typo3-ter/cc-awstats/2013-09-25.yaml b/typo3-ter/cc-awstats/2013-09-25.yaml new file mode 100644 index 000000000..a70d89461 --- /dev/null +++ b/typo3-ter/cc-awstats/2013-09-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-018: Several vulnerabilities in extension AWStats (cc_awstats)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-018/ +cve: +branches: + master: + time: 2013-09-25 12:00 + versions: [<=0.10.0] +reference: composer://typo3-ter/cc-awstats diff --git a/typo3-ter/commerce/2008-10-20.yaml b/typo3-ter/commerce/2008-10-20.yaml new file mode 100644 index 000000000..e5db0c874 --- /dev/null +++ b/typo3-ter/commerce/2008-10-20.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20081020-2: SQL Injection in extension Commerce (commerce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20081020-2/ +cve: +branches: + master: + time: 2008-10-20 12:00 + versions: [<=0.9.6] +reference: composer://typo3-ter/commerce diff --git a/typo3-ter/commerce/2009-08-18.yaml b/typo3-ter/commerce/2009-08-18.yaml new file mode 100644 index 000000000..a4d57a4ee --- /dev/null +++ b/typo3-ter/commerce/2009-08-18.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2009-011: Cross-Site Scripting vulnerability in extension Commerce (commerce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-011/ +cve: +branches: + master: + time: 2009-08-18 12:00 + versions: [<=0.9.8] +reference: composer://typo3-ter/commerce diff --git a/typo3-ter/commerce/2012-12-21.yaml b/typo3-ter/commerce/2012-12-21.yaml new file mode 100644 index 000000000..7a0f739ce --- /dev/null +++ b/typo3-ter/commerce/2012-12-21.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-013: Several Vulnerabilities in extension commerce (commerce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-013/ +cve: +branches: + master: + time: 2012-12-21 12:00 + versions: [<=0.12.7] +reference: composer://typo3-ter/commerce diff --git a/typo3-ter/content-rating-extbase/2015-01-09.yaml b/typo3-ter/content-rating-extbase/2015-01-09.yaml new file mode 100644 index 000000000..be01654ec --- /dev/null +++ b/typo3-ter/content-rating-extbase/2015-01-09.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-003: Multiple vulnerabilities in Content Rating Extbase (content_rating_extbase)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-003/ +cve: +branches: + master: + time: 2015-01-09 12:00 + versions: [<=2.0.3] +reference: composer://typo3-ter/content-rating-extbase diff --git a/typo3-ter/content-rating/2015-01-09.yaml b/typo3-ter/content-rating/2015-01-09.yaml new file mode 100644 index 000000000..f9a28316e --- /dev/null +++ b/typo3-ter/content-rating/2015-01-09.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-002: Multiple vulnerabilities in Content Rating (content_rating)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-002/ +cve: +branches: + master: + time: 2015-01-09 12:00 + versions: [<=1.0.3] +reference: composer://typo3-ter/content-rating diff --git a/typo3-ter/cooluri/2013-02-19.yaml b/typo3-ter/cooluri/2013-02-19.yaml new file mode 100644 index 000000000..47de70279 --- /dev/null +++ b/typo3-ter/cooluri/2013-02-19.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-003: SQL Injection vulnerability in extension CoolURI (cooluri)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-003/ +cve: +branches: + master: + time: 2013-02-19 12:00 + versions: [<=1.0.29] +reference: composer://typo3-ter/cooluri diff --git a/typo3-ter/dam/2011-01-26.yaml b/typo3-ter/dam/2011-01-26.yaml new file mode 100644 index 000000000..bdf2c2b38 --- /dev/null +++ b/typo3-ter/dam/2011-01-26.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2011-001: Cross-Site Scripting vulnerability in extension 'Media [DAM]' (dam)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-001/ +cve: +branches: + master: + time: 2011-01-26 12:00 + versions: [<=1.1.7] +reference: composer://typo3-ter/dam diff --git a/typo3-ter/dce/2014-10-17.yaml b/typo3-ter/dce/2014-10-17.yaml new file mode 100644 index 000000000..8c9d9aa51 --- /dev/null +++ b/typo3-ter/dce/2014-10-17.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-015: Information Disclosure vulnerability in Dynamic Content Elements (dce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-015/ +cve: +branches: + master: + time: 2014-10-17 12:00 + versions: [>=0.7.0,<=0.11.4] +reference: composer://typo3-ter/dce diff --git a/typo3-ter/devlog/2015-06-15.yaml b/typo3-ter/devlog/2015-06-15.yaml new file mode 100644 index 000000000..8f7b80ff0 --- /dev/null +++ b/typo3-ter/devlog/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-011: SQL Injection vulnerability in extension Developer Log (devlog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-011/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=2.11.3] +reference: composer://typo3-ter/devlog diff --git a/typo3-ter/direct-mail-subscription/2011-09-07.yaml b/typo3-ter/direct-mail-subscription/2011-09-07.yaml new file mode 100644 index 000000000..c52ff8a52 --- /dev/null +++ b/typo3-ter/direct-mail-subscription/2011-09-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-007: Several Vulnerabilities in extension Direct Mail Subscription (direct_mail_subscription)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-007/ +cve: +branches: + master: + time: 2011-09-07 12:00 + versions: [<=1.1.0] +reference: composer://typo3-ter/direct-mail-subscription diff --git a/typo3-ter/direct-mail-subscription/2014-02-12.yaml b/typo3-ter/direct-mail-subscription/2014-02-12.yaml new file mode 100644 index 000000000..813112abc --- /dev/null +++ b/typo3-ter/direct-mail-subscription/2014-02-12.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-004: Mass Assignment in extension Direct Mail Subscription (direct_mail_subscription)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-004/ +cve: +branches: + master: + time: 2014-02-12 12:00 + versions: [<=2.0.0] +reference: composer://typo3-ter/direct-mail-subscription diff --git a/typo3-ter/direct-mail-subscription/2015-01-16.yaml b/typo3-ter/direct-mail-subscription/2015-01-16.yaml new file mode 100644 index 000000000..98905c7f4 --- /dev/null +++ b/typo3-ter/direct-mail-subscription/2015-01-16.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-004: Information Disclosure in Direct Mail Subscription (direct_mail_subscription)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-004/ +cve: +branches: + master: + time: 2015-01-16 12:00 + versions: [>=2.0.1,<=2.0.1] +reference: composer://typo3-ter/direct-mail-subscription diff --git a/typo3-ter/direct-mail/2009-12-01.yaml b/typo3-ter/direct-mail/2009-12-01.yaml new file mode 100644 index 000000000..21553e7e2 --- /dev/null +++ b/typo3-ter/direct-mail/2009-12-01.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2009-018: Cross-Site Scripting vulnerability in extension Direct Mail (direct_mail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-018/ +cve: +branches: + master: + time: 2009-12-01 12:00 + versions: [<=2.6.4] +reference: composer://typo3-ter/direct-mail diff --git a/typo3-ter/direct-mail/2011-03-15.yaml b/typo3-ter/direct-mail/2011-03-15.yaml new file mode 100644 index 000000000..9fc215c07 --- /dev/null +++ b/typo3-ter/direct-mail/2011-03-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2011-002: XSS and SQL Injection vulnerabilities in extension 'Direct Mail' (direct_mail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-002/ +cve: +branches: + master: + time: 2011-03-15 12:00 + versions: [<=2.6.9] +reference: composer://typo3-ter/direct-mail diff --git a/typo3-ter/direct-mail/2013-09-25.yaml b/typo3-ter/direct-mail/2013-09-25.yaml new file mode 100644 index 000000000..c40f5c1ab --- /dev/null +++ b/typo3-ter/direct-mail/2013-09-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-014: Information Disclosure in extension Direct Mail (direct_mail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-014/ +cve: +branches: + master: + time: 2013-09-25 12:00 + versions: [<=3.1.1] +reference: composer://typo3-ter/direct-mail diff --git a/typo3-ter/dmmjobcontrol/2014-09-25.yaml b/typo3-ter/dmmjobcontrol/2014-09-25.yaml new file mode 100644 index 000000000..432f9de61 --- /dev/null +++ b/typo3-ter/dmmjobcontrol/2014-09-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-012: Several vulnerabilities in extension JobControl (dmmjobcontrol)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-012/ +cve: +branches: + master: + time: 2014-09-25 12:00 + versions: [<=2.14.0] +reference: composer://typo3-ter/dmmjobcontrol diff --git a/typo3-ter/error-404-handling/2010-04-14.yaml b/typo3-ter/error-404-handling/2010-04-14.yaml new file mode 100644 index 000000000..44a59492e --- /dev/null +++ b/typo3-ter/error-404-handling/2010-04-14.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2010-011: Vulnerabilitiy in extension 404 Error Page Handling (error_404_handling)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-011/ +cve: +branches: + master: + time: 2010-04-14 12:00 + versions: [<=0.1.1] +reference: composer://typo3-ter/error-404-handling diff --git a/typo3-ter/eu-ldap/2015-09-30.yaml b/typo3-ter/eu-ldap/2015-09-30.yaml new file mode 100644 index 000000000..6feff0895 --- /dev/null +++ b/typo3-ter/eu-ldap/2015-09-30.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-016: Information Disclosure in extension 'LDAP' (eu_ldap)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-016/ +cve: +branches: + master: + time: 2015-09-30 12:00 + versions: [<=2.8.18] +reference: composer://typo3-ter/eu-ldap diff --git a/typo3-ter/fal-sftp/2014-10-17.yaml b/typo3-ter/fal-sftp/2014-10-17.yaml new file mode 100644 index 000000000..8476fdc73 --- /dev/null +++ b/typo3-ter/fal-sftp/2014-10-17.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-014: Improper Access Control vulnerability in extension fal_sftp (fal_sftp)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-014/ +cve: +branches: + master: + time: 2014-10-17 12:00 + versions: [>=0.2.4, <=0.2.5] +reference: composer://typo3-ter/fal-sftp diff --git a/typo3-ter/feupload/2015-06-15.yaml b/typo3-ter/feupload/2015-06-15.yaml new file mode 100644 index 000000000..cab1b1568 --- /dev/null +++ b/typo3-ter/feupload/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-006: Arbitrary Code Execution in extension Frontend User Upload (feupload)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-006/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=0.5.0] +reference: composer://typo3-ter/feupload diff --git a/typo3-ter/formhandler/2011-08-25.yaml b/typo3-ter/formhandler/2011-08-25.yaml new file mode 100644 index 000000000..dc4c394a0 --- /dev/null +++ b/typo3-ter/formhandler/2011-08-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-003: Several Vulnerabilities in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-003/ +cve: +branches: + master: + time: 2011-08-25 12:00 + versions: [<=0.9.14] +reference: composer://typo3-ter/formhandler diff --git a/typo3-ter/formhandler/2012-10-25.yaml b/typo3-ter/formhandler/2012-10-25.yaml new file mode 100644 index 000000000..5c0489f4e --- /dev/null +++ b/typo3-ter/formhandler/2012-10-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-012: Several Vulnerabilities in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-012/ +cve: +branches: + master: + time: 2012-10-25 12:00 + versions: [<=1.4.0] +reference: composer://typo3-ter/formhandler diff --git a/typo3-ter/formhandler/2013-08-05.yaml b/typo3-ter/formhandler/2013-08-05.yaml new file mode 100644 index 000000000..de5225eca --- /dev/null +++ b/typo3-ter/formhandler/2013-08-05.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-012: Several vulnerabilities in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-012/ +cve: +branches: + master: + time: 2013-08-05 12:00 + versions: [<=1.6.0] +reference: composer://typo3-ter/formhandler diff --git a/typo3-ter/formhandler/2013-09-25.yaml b/typo3-ter/formhandler/2013-09-25.yaml new file mode 100644 index 000000000..92fbd92e2 --- /dev/null +++ b/typo3-ter/formhandler/2013-09-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-016: SQL Injection vulnerability in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-016/ +cve: +branches: + master: + time: 2013-09-25 12:00 + versions: [<=1.6.1] +reference: composer://typo3-ter/formhandler diff --git a/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml b/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml new file mode 100644 index 000000000..773eac1c9 --- /dev/null +++ b/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-001: Improper Authentication in LDAP / SSO Authentication (ig_ldap_sso_auth)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-001/ +cve: +branches: + master: + time: 2015-01-08 12:00 + versions: [>=2.0.0,<=2.0.0] +reference: composer://typo3-ter/ig-ldap-sso-auth diff --git a/typo3-ter/jm-gallery/2011-08-03.yaml b/typo3-ter/jm-gallery/2011-08-03.yaml new file mode 100644 index 000000000..993d85c8d --- /dev/null +++ b/typo3-ter/jm-gallery/2011-08-03.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-002: Multiple SQL Injection vulnerabilities in extension 'Website Photo Gallery' (jm_gallery)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-002/ +cve: +branches: + master: + time: 2011-08-03 12:00 + versions: [<=0.9.1] +reference: composer://typo3-ter/jm-gallery diff --git a/typo3-ter/jobfair/2015-06-15.yaml b/typo3-ter/jobfair/2015-06-15.yaml new file mode 100644 index 000000000..2fee6b8a5 --- /dev/null +++ b/typo3-ter/jobfair/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-013: Arbitrary Code Execution in extension Job Fair (jobfair)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-013/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=1.0.0] +reference: composer://typo3-ter/jobfair diff --git a/typo3-ter/js-faq/2015-06-15.yaml b/typo3-ter/js-faq/2015-06-15.yaml new file mode 100644 index 000000000..e9d8fd35a --- /dev/null +++ b/typo3-ter/js-faq/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-012: SQL Injection vulnerability in extension FAQ - Frequently Asked Questions (js_faq)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-012/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=1.2.0] +reference: composer://typo3-ter/js-faq diff --git a/typo3-ter/ke-search/2011-06-29.yaml b/typo3-ter/ke-search/2011-06-29.yaml new file mode 100644 index 000000000..9adbeb92e --- /dev/null +++ b/typo3-ter/ke-search/2011-06-29.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2011-007: SQL Injection vulnerability in extension Faceted Search (ke_search)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-007/ +cve: +branches: + master: + time: 2011-06-29 12:00 + versions: [<=0.3.0] +reference: composer://typo3-ter/ke-search diff --git a/typo3-ter/ke-stats/2008-05-13.yaml b/typo3-ter/ke-stats/2008-05-13.yaml new file mode 100644 index 000000000..1a2d4e091 --- /dev/null +++ b/typo3-ter/ke-stats/2008-05-13.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080513-4: Multiple vulnerabilities in extension Statistics (ke_stats)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-4/ +cve: +branches: + master: + time: 2008-05-13 12:00 + versions: [<=0.1.2] +reference: composer://typo3-ter/ke-stats diff --git a/typo3-ter/kj-imagelightbox2/2008-05-27.yaml b/typo3-ter/kj-imagelightbox2/2008-05-27.yaml new file mode 100644 index 000000000..2839d377b --- /dev/null +++ b/typo3-ter/kj-imagelightbox2/2008-05-27.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080527-1: Cross Site Scripting vulnerability in extension 'KJ: Image Lightbox v2' (kj_imagelightbox2)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-1/ +cve: +branches: + master: + time: 2008-05-27 12:00 + versions: [<=1.4.2] +reference: composer://typo3-ter/kj-imagelightbox2 diff --git a/typo3-ter/locator/2015-06-15.yaml b/typo3-ter/locator/2015-06-15.yaml new file mode 100644 index 000000000..165b16bd0 --- /dev/null +++ b/typo3-ter/locator/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-009: SQL Injection vulnerability in extension Store Locator (locator)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-009/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=3.3.0] +reference: composer://typo3-ter/locator diff --git a/typo3-ter/mh-httpbl/2015-09-30.yaml b/typo3-ter/mh-httpbl/2015-09-30.yaml new file mode 100644 index 000000000..64eb4a7c8 --- /dev/null +++ b/typo3-ter/mh-httpbl/2015-09-30.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-021: SQL Injection in extension 'http:BL Blocking' (mh_httpbl)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-021/ +cve: +branches: + master: + time: 2015-09-30 12:00 + versions: [<=1.1.7] +reference: composer://typo3-ter/mh-httpbl diff --git a/typo3-ter/mkforms/2015-09-30.yaml b/typo3-ter/mkforms/2015-09-30.yaml new file mode 100644 index 000000000..f5d087e18 --- /dev/null +++ b/typo3-ter/mkforms/2015-09-30.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-022: Arbitrary Code Execution in extension 'MK Forms' (mkforms)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-022/ +cve: +branches: + master: + time: 2015-09-30 12:00 + versions: [<=1.0.23] +reference: composer://typo3-ter/mkforms diff --git a/typo3-ter/mm-forum/2010-03-16.yaml b/typo3-ter/mm-forum/2010-03-16.yaml new file mode 100644 index 000000000..05b11adbb --- /dev/null +++ b/typo3-ter/mm-forum/2010-03-16.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2010-007: Cross-Site Scripting vulnerability in extension mm_forum (mm_forum)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-007/ +cve: +branches: + master: + time: 2010-03-16 12:00 + versions: [<=1.8.2] +reference: composer://typo3-ter/mm-forum diff --git a/typo3-ter/mm-forum/2014-02-12.yaml b/typo3-ter/mm-forum/2014-02-12.yaml new file mode 100644 index 000000000..ec3fbd50b --- /dev/null +++ b/typo3-ter/mm-forum/2014-02-12.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-001: Several vulnerabilities in extension mm_forum (mm_forum)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-001/ +cve: +branches: + master: + time: 2014-02-12 12:00 + versions: [<=1.9.2] +reference: composer://typo3-ter/mm-forum diff --git a/typo3-ter/multishop/2013-06-03.yaml b/typo3-ter/multishop/2013-06-03.yaml new file mode 100644 index 000000000..303ca9460 --- /dev/null +++ b/typo3-ter/multishop/2013-06-03.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-010: SQL Injection vulnerability in extension Multishop (multishop)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-010/ +cve: +branches: + master: + time: 2013-06-03 12:00 + versions: [<=2.0.38] +reference: composer://typo3-ter/multishop diff --git a/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml b/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml new file mode 100644 index 000000000..c4b538a1a --- /dev/null +++ b/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-010: SQL Injection vulnerability in extension Smoelenboek (ncgov_smoelenboek)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-010/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=1.0.8] +reference: composer://typo3-ter/ncgov-smoelenboek diff --git a/typo3-ter/news/2015-09-30.yaml b/typo3-ter/news/2015-09-30.yaml new file mode 100644 index 000000000..bbee7eb36 --- /dev/null +++ b/typo3-ter/news/2015-09-30.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-017: Cross-Site Scripting in extension 'News system' (news)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-017/ +cve: +branches: + master: + time: 2015-09-30 12:00 + versions: [<=3.2.1] +reference: composer://typo3-ter/news diff --git a/typo3-ter/pagenotfoundhandling/2015-06-29.yaml b/typo3-ter/pagenotfoundhandling/2015-06-29.yaml new file mode 100644 index 000000000..a8bd8b2f7 --- /dev/null +++ b/typo3-ter/pagenotfoundhandling/2015-06-29.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-015: Cross-Site Scripting in extension '404 Page not found handling' (pagenotfoundhandling)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-015/ +cve: +branches: + master: + time: 2015-06-29 12:00 + versions: [<=2.1.0] +reference: composer://typo3-ter/pagenotfoundhandling diff --git a/typo3-ter/pbsurvey/2008-05-13.yaml b/typo3-ter/pbsurvey/2008-05-13.yaml new file mode 100644 index 000000000..f236c73d8 --- /dev/null +++ b/typo3-ter/pbsurvey/2008-05-13.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080513-2: Cross Site Scripting vulnerability in extension Questionaire (pbsurvey)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-2/ +cve: +branches: + master: + time: 2008-05-13 12:00 + versions: [<=1.2.0] +reference: composer://typo3-ter/pbsurvey diff --git a/typo3-ter/pbsurvey/2011-08-25.yaml b/typo3-ter/pbsurvey/2011-08-25.yaml new file mode 100644 index 000000000..0b9332566 --- /dev/null +++ b/typo3-ter/pbsurvey/2011-08-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-004: Cross Site Scripting Vulnerability in extension Questionaire (pbsurvey)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-004/ +cve: +branches: + master: + time: 2011-08-25 12:00 + versions: [<=1.3.0] +reference: composer://typo3-ter/pbsurvey diff --git a/typo3-ter/phpmyadmin/2009-01-23.yaml b/typo3-ter/phpmyadmin/2009-01-23.yaml new file mode 100644 index 000000000..0cbe5f7d2 --- /dev/null +++ b/typo3-ter/phpmyadmin/2009-01-23.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2009-015: XSS and SQL injection vulnerabilities in extension 'phpMyAdmin' (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-015/ +cve: +branches: + master: + time: 2009-01-23 12:00 + versions: [<=4.3.0] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2011-05-23.yaml b/typo3-ter/phpmyadmin/2011-05-23.yaml new file mode 100644 index 000000000..86479e76a --- /dev/null +++ b/typo3-ter/phpmyadmin/2011-05-23.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2011-005: Cross-Site Scripting and Open Redirection vulnerability in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-005/ +cve: +branches: + master: + time: 2011-05-23 12:00 + versions: [<=4.10.3] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2011-07-06.yaml b/typo3-ter/phpmyadmin/2011-07-06.yaml new file mode 100644 index 000000000..5e03b97ca --- /dev/null +++ b/typo3-ter/phpmyadmin/2011-07-06.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2011-008: Directory Traversal and Code Injection vulnerability in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-008/ +cve: +branches: + master: + time: 2011-07-06 12:00 + versions: [<=4.11.1] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2011-07-25.yaml b/typo3-ter/phpmyadmin/2011-07-25.yaml new file mode 100644 index 000000000..1b28965c0 --- /dev/null +++ b/typo3-ter/phpmyadmin/2011-07-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-001: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-001/ +cve: +branches: + master: + time: 2011-07-25 12:00 + versions: [<=4.11.2] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2011-08-26.yaml b/typo3-ter/phpmyadmin/2011-08-26.yaml new file mode 100644 index 000000000..a1e54bf00 --- /dev/null +++ b/typo3-ter/phpmyadmin/2011-08-26.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-005: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-005/ +cve: +branches: + master: + time: 2011-08-26 12:00 + versions: [<=4.11.3] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2011-09-15.yaml b/typo3-ter/phpmyadmin/2011-09-15.yaml new file mode 100644 index 000000000..e6ef8cfd5 --- /dev/null +++ b/typo3-ter/phpmyadmin/2011-09-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-011: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-011/ +cve: +branches: + master: + time: 2011-09-15 12:00 + versions: [<=4.11.4] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2011-10-18.yaml b/typo3-ter/phpmyadmin/2011-10-18.yaml new file mode 100644 index 000000000..8692448ff --- /dev/null +++ b/typo3-ter/phpmyadmin/2011-10-18.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-014: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-014/ +cve: +branches: + master: + time: 2011-10-18 12:00 + versions: [<=4.11.5] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2011-11-15.yaml b/typo3-ter/phpmyadmin/2011-11-15.yaml new file mode 100644 index 000000000..84ee7337d --- /dev/null +++ b/typo3-ter/phpmyadmin/2011-11-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-018/ +cve: +branches: + master: + time: 2011-11-15 12:00 + versions: [<=4.11.8] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2014-09-26.yaml b/typo3-ter/phpmyadmin/2014-09-26.yaml new file mode 100644 index 000000000..9a0215f37 --- /dev/null +++ b/typo3-ter/phpmyadmin/2014-09-26.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-011: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-011/ +cve: +branches: + master: + time: 2014-09-26 12:00 + versions: [<=4.18.2] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2014-11-05.yaml b/typo3-ter/phpmyadmin/2014-11-05.yaml new file mode 100644 index 000000000..e22a6f02b --- /dev/null +++ b/typo3-ter/phpmyadmin/2014-11-05.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-016: Cross-Site Scripting vulnerability in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-016/ +cve: +branches: + master: + time: 2014-11-05 12:00 + versions: [>=4.18.0,<=4.18.3] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/phpmyadmin/2014-12-08.yaml b/typo3-ter/phpmyadmin/2014-12-08.yaml new file mode 100644 index 000000000..27eaf3bcc --- /dev/null +++ b/typo3-ter/phpmyadmin/2014-12-08.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-018/ +cve: +branches: + master: + time: 2014-12-08 12:00 + versions: [>=4.18.0,<4.18.5] +reference: composer://typo3-ter/phpmyadmin diff --git a/typo3-ter/powermail/2011-05-11.yaml b/typo3-ter/powermail/2011-05-11.yaml new file mode 100644 index 000000000..d78a778c4 --- /dev/null +++ b/typo3-ter/powermail/2011-05-11.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2011-004: Blind SQL Injection vulnerability in extension 'powermail' (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-004/ +cve: +branches: + master: + time: 2011-05-11 12:00 + versions: [>=1.6.0,<=1.6.2] +reference: composer://typo3-ter/powermail diff --git a/typo3-ter/powermail/2012-03-28.yaml b/typo3-ter/powermail/2012-03-28.yaml new file mode 100644 index 000000000..7d49d0c2a --- /dev/null +++ b/typo3-ter/powermail/2012-03-28.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-004: Cross-Site Scripting vulnerability in extension powermail for TYPO3 (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-004/ +cve: +branches: + master: + time: 2012-03-28 12:00 + versions: [<=1.6.4] +reference: composer://typo3-ter/powermail diff --git a/typo3-ter/powermail/2012-06-07.yaml b/typo3-ter/powermail/2012-06-07.yaml new file mode 100644 index 000000000..9bfd45382 --- /dev/null +++ b/typo3-ter/powermail/2012-06-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-009: Cross-site scripting vulnerability in extension powermail for TYPO3 (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-009/ +cve: +branches: + master: + time: 2012-06-07 12:00 + versions: [<=1.6.6] +reference: composer://typo3-ter/powermail diff --git a/typo3-ter/powermail/2014-04-10.yaml b/typo3-ter/powermail/2014-04-10.yaml new file mode 100644 index 000000000..b56f0f9ae --- /dev/null +++ b/typo3-ter/powermail/2014-04-10.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-006: Captcha Bypass in extension 'powermail' (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-006/ +cve: +branches: + master: + time: 2014-04-10 12:00 + versions: [>=2.0.0,<=2.0.10] +reference: composer://typo3-ter/powermail diff --git a/typo3-ter/pt-extbase/2014-02-12.yaml b/typo3-ter/pt-extbase/2014-02-12.yaml new file mode 100644 index 000000000..a63f5b39d --- /dev/null +++ b/typo3-ter/pt-extbase/2014-02-12.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ +cve: +branches: + master: + time: 2014-02-12 12:00 + versions: [<=1.5.0] +reference: composer://typo3-ter/pt-extbase diff --git a/typo3-ter/realurl/2013-09-25.yaml b/typo3-ter/realurl/2013-09-25.yaml new file mode 100644 index 000000000..63d4e7d2a --- /dev/null +++ b/typo3-ter/realurl/2013-09-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-015: SQL Injection vulnerability in extension RealURL: speaking paths for TYPO3 (realurl)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-015/ +cve: +branches: + master: + time: 2013-09-25 12:00 + versions: [<=1.12.6] +reference: composer://typo3-ter/realurl diff --git a/typo3-ter/rgsmoothgallery/2011-09-07.yaml b/typo3-ter/rgsmoothgallery/2011-09-07.yaml new file mode 100644 index 000000000..bfa4dcae4 --- /dev/null +++ b/typo3-ter/rgsmoothgallery/2011-09-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-008: Several Vulnerabilities in extension SmoothGallery for TYPO3 (rgsmoothgallery)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-008/ +cve: +branches: + master: + time: 2011-09-07 12:00 + versions: [<=1.5.1] +reference: composer://typo3-ter/rgsmoothgallery diff --git a/typo3-ter/rlmp-eventdb/2008-05-13.yaml b/typo3-ter/rlmp-eventdb/2008-05-13.yaml new file mode 100644 index 000000000..cb2d14933 --- /dev/null +++ b/typo3-ter/rlmp-eventdb/2008-05-13.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080513-3: Cross Site Scripting vulnerability in extension Event Database (rlmp_eventdb)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-3/ +cve: +branches: + master: + time: 2008-05-13 12:00 + versions: [<=1.1.1] +reference: composer://typo3-ter/rlmp-eventdb diff --git a/typo3-ter/sb-akronymmanager/2015-06-18.yaml b/typo3-ter/sb-akronymmanager/2015-06-18.yaml new file mode 100644 index 000000000..db63fbab3 --- /dev/null +++ b/typo3-ter/sb-akronymmanager/2015-06-18.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-014: SQL Injection in extension 'Akronymmanager' (sb_akronymmanager)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-014/ +cve: +branches: + master: + time: 2015-06-18 12:00 + versions: [<=0.5.0] +reference: composer://typo3-ter/sb-akronymmanager diff --git a/typo3-ter/seminars/2012-07-03.yaml b/typo3-ter/seminars/2012-07-03.yaml new file mode 100644 index 000000000..48a6aaeb7 --- /dev/null +++ b/typo3-ter/seminars/2012-07-03.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-010: Cross-site scripting vulnerability in extension Seminars (seminars)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-010/ +cve: +branches: + master: + time: 2012-07-03 12:00 + versions: [<=0.9.3] +reference: composer://typo3-ter/seminars diff --git a/typo3-ter/seo-basics/2012-03-28.yaml b/typo3-ter/seo-basics/2012-03-28.yaml new file mode 100644 index 000000000..1fadea3fc --- /dev/null +++ b/typo3-ter/seo-basics/2012-03-28.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-006: Cross-Site Scripting vulnerability in extension Basic SEO Features (seo_basics)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-006/ +cve: +branches: + master: + time: 2012-03-28 12:00 + versions: [<=0.8.1] +reference: composer://typo3-ter/seo-basics diff --git a/typo3-ter/seo-basics/2012-06-07.yaml b/typo3-ter/seo-basics/2012-06-07.yaml new file mode 100644 index 000000000..7bf511adf --- /dev/null +++ b/typo3-ter/seo-basics/2012-06-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-007: SQL Injection vulnerability in extension Basic SEO Features (seo_basics)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-007/ +cve: +branches: + master: + time: 2012-06-07 12:00 + versions: [<=0.8.2] +reference: composer://typo3-ter/seo-basics diff --git a/typo3-ter/sg-zfelib/2008-05-27.yaml b/typo3-ter/sg-zfelib/2008-05-27.yaml new file mode 100644 index 000000000..ec50186ce --- /dev/null +++ b/typo3-ter/sg-zfelib/2008-05-27.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080527-2: SQL Injection in extension 'Library for Frontend plugins' (sg_zfelib)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-2/ +cve: +branches: + master: + time: 2008-05-27 12:00 + versions: [<=1.1.512] +reference: composer://typo3-ter/sg-zfelib diff --git a/typo3-ter/si-bibtex/2014-12-15.yaml b/typo3-ter/si-bibtex/2014-12-15.yaml new file mode 100644 index 000000000..d0cc46b6d --- /dev/null +++ b/typo3-ter/si-bibtex/2014-12-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-020: Multiple vulnerabilities in BibTex Publications (si_bibtex)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-020/ +cve: +branches: + master: + time: 2014-12-15 12:00 + versions: [<=0.2.3] +reference: composer://typo3-ter/si-bibtex diff --git a/typo3-ter/solr/2013-09-25.yaml b/typo3-ter/solr/2013-09-25.yaml new file mode 100644 index 000000000..31d867be6 --- /dev/null +++ b/typo3-ter/solr/2013-09-25.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-009: Several vulnerabilities in extension Apache Solr for TYPO3 (solr)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009/ +cve: +branches: + master: + time: 2013-09-25 12:00 + versions: [<=2.8.2] +reference: composer://typo3-ter/solr diff --git a/typo3-ter/sr-feuser-register/2010-04-14.yaml b/typo3-ter/sr-feuser-register/2010-04-14.yaml new file mode 100644 index 000000000..4ec81e8c0 --- /dev/null +++ b/typo3-ter/sr-feuser-register/2010-04-14.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2010-009: Vulnerabilitiy in extension Frontend User Registration (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-009/ +cve: +branches: + master: + time: 2010-04-14 12:00 + versions: [<=2.5.24] +reference: composer://typo3-ter/sr-feuser-register diff --git a/typo3-ter/sr-feuser-register/2010-07-28.yaml b/typo3-ter/sr-feuser-register/2010-07-28.yaml new file mode 100644 index 000000000..d60269777 --- /dev/null +++ b/typo3-ter/sr-feuser-register/2010-07-28.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2010-013: Vulnerabilitiy in extension Front End User Registration (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-013/ +cve: +branches: + master: + time: 2010-07-28 12:00 + versions: [>=2.5.25,<=2.5.25] +reference: composer://typo3-ter/sr-feuser-register diff --git a/typo3-ter/sr-feuser-register/2012-02-23.yaml b/typo3-ter/sr-feuser-register/2012-02-23.yaml new file mode 100644 index 000000000..ecf2cbaf5 --- /dev/null +++ b/typo3-ter/sr-feuser-register/2012-02-23.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2012-002: Information disclosure vulnerabilities in extension 'Front End User Registration' (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-002/ +cve: +branches: + master: + time: 2012-02-23 12:00 + versions: [<=2.6.1] +reference: composer://typo3-ter/sr-feuser-register diff --git a/typo3-ter/sr-feuser-register/2013-08-05.yaml b/typo3-ter/sr-feuser-register/2013-08-05.yaml new file mode 100644 index 000000000..7e4c6e265 --- /dev/null +++ b/typo3-ter/sr-feuser-register/2013-08-05.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-011: Cross-Site Scripting vulnerability in extension Front End User Registration (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-011/ +cve: +branches: + master: + time: 2013-08-05 12:00 + versions: [<=3.0.1] +reference: composer://typo3-ter/sr-feuser-register diff --git a/typo3-ter/sr-sendcard/2008-07-01.yaml b/typo3-ter/sr-sendcard/2008-07-01.yaml new file mode 100644 index 000000000..326c0ca12 --- /dev/null +++ b/typo3-ter/sr-sendcard/2008-07-01.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080701-3: Multiple vulnerabilities in extension Send-A-Card (sr_sendcard)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-3/ +cve: +branches: + master: + time: 2008-07-01 12:00 + versions: [<=2.2.2] +reference: composer://typo3-ter/sr-sendcard diff --git a/typo3-ter/static-info-tables/2013-02-19.yaml b/typo3-ter/static-info-tables/2013-02-19.yaml new file mode 100644 index 000000000..69f57e336 --- /dev/null +++ b/typo3-ter/static-info-tables/2013-02-19.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2013-004: Cross-Site Scripting vulnerability in extension Static Info Tables (static_info_tables)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-004/ +cve: +branches: + master: + time: 2013-02-19 12:00 + versions: [<=2.3.0] +reference: composer://typo3-ter/static-info-tables diff --git a/typo3-ter/t3adminer/2015-09-30.yaml b/typo3-ter/t3adminer/2015-09-30.yaml new file mode 100644 index 000000000..b10d091cb --- /dev/null +++ b/typo3-ter/t3adminer/2015-09-30.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-018: Information Disclosure in extension 'Adminer' (t3adminer)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-018/ +cve: +branches: + master: + time: 2015-09-30 12:00 + versions: [<=7.0.1] +reference: composer://typo3-ter/t3adminer diff --git a/typo3-ter/t3blog/2010-02-01.yaml b/typo3-ter/t3blog/2010-02-01.yaml new file mode 100644 index 000000000..45e0db21e --- /dev/null +++ b/typo3-ter/t3blog/2010-02-01.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2010-002: Multiple vulnerabilities in extension T3BLOG (t3blog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-002/ +cve: +branches: + master: + time: 2010-02-01 12:00 + versions: [<=0.6.2] +reference: composer://typo3-ter/t3blog diff --git a/typo3-ter/t3blog/2011-09-27.yaml b/typo3-ter/t3blog/2011-09-27.yaml new file mode 100644 index 000000000..157c5a7ce --- /dev/null +++ b/typo3-ter/t3blog/2011-09-27.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-013: Cross-Site scripting vulnerability in extension t3blog (t3blog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-013/ +cve: +branches: + master: + time: 2011-09-27 12:00 + versions: [<=1.1.1] +reference: composer://typo3-ter/t3blog diff --git a/typo3-ter/t3m/2009-08-18.yaml b/typo3-ter/t3m/2009-08-18.yaml new file mode 100644 index 000000000..dabbf6be3 --- /dev/null +++ b/typo3-ter/t3m/2009-08-18.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2009-012: Blind SQL Injection vulnerability in extension T3M E-Mail Marketing Tool (t3m)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-012/ +cve: +branches: + master: + time: 2009-08-18 12:00 + versions: [<=0.2.4] +reference: composer://typo3-ter/t3m diff --git a/typo3-ter/t3quixplorer/2015-09-30.yaml b/typo3-ter/t3quixplorer/2015-09-30.yaml new file mode 100644 index 000000000..d369dacfc --- /dev/null +++ b/typo3-ter/t3quixplorer/2015-09-30.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-020: Cross-Site Request Forgery in extension 'Typo3 Quixplorer' (t3quixplorer)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-020/ +cve: +branches: + master: + time: 2015-09-30 12:00 + versions: [<=1.7.2] +reference: composer://typo3-ter/t3quixplorer diff --git a/typo3-ter/th-mailformplus/2008-05-05.yaml b/typo3-ter/th-mailformplus/2008-05-05.yaml new file mode 100644 index 000000000..14915d513 --- /dev/null +++ b/typo3-ter/th-mailformplus/2008-05-05.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080505-1: Multiple vulnerabilities in extension MailformPlus (th_mailformplus)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080505-1/ +cve: +branches: + master: + time: 2008-05-05 12:00 + versions: [<=4.0.3] +reference: composer://typo3-ter/th-mailformplus diff --git a/typo3-ter/th-mailformplus/2011-09-07.yaml b/typo3-ter/th-mailformplus/2011-09-07.yaml new file mode 100644 index 000000000..96afbcb5a --- /dev/null +++ b/typo3-ter/th-mailformplus/2011-09-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2011-009: Several Vulnerabilities in extension MailformPlus (th_mailformplus)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-009/ +cve: +branches: + master: + time: 2011-09-07 12:00 + versions: [<=4.0.15] +reference: composer://typo3-ter/th-mailformplus diff --git a/typo3-ter/tipafriend/2010-04-14.yaml b/typo3-ter/tipafriend/2010-04-14.yaml new file mode 100644 index 000000000..5f40450ff --- /dev/null +++ b/typo3-ter/tipafriend/2010-04-14.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2010-010: Vulnerabilitiy in extension Tip-A-Friend (tipafriend)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-010/ +cve: +branches: + master: + time: 2010-04-14 12:00 + versions: [>=1.2.3,<=1.2.3] +reference: composer://typo3-ter/tipafriend diff --git a/typo3-ter/tt-news/2014-02-12.yaml b/typo3-ter/tt-news/2014-02-12.yaml new file mode 100644 index 000000000..d4d7d81bb --- /dev/null +++ b/typo3-ter/tt-news/2014-02-12.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-003: Insecure Unserialize in extension News (tt_news)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-003/ +cve: +branches: + master: + time: 2014-02-12 12:00 + versions: [<=3.5.1] +reference: composer://typo3-ter/tt-news diff --git a/typo3-ter/ve-guestbook/2009-06-16.yaml b/typo3-ter/ve-guestbook/2009-06-16.yaml new file mode 100644 index 000000000..2f668f25e --- /dev/null +++ b/typo3-ter/ve-guestbook/2009-06-16.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2009-009: Cross-Site Scripting vulnerability in extension Modern Guestbook / Commenting System (ve_guestbook)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-009/ +cve: +branches: + master: + time: 2009-06-16 12:00 + versions: [<=2.7.1] +reference: composer://typo3-ter/ve-guestbook diff --git a/typo3-ter/webdav/2014-11-27.yaml b/typo3-ter/webdav/2014-11-27.yaml new file mode 100644 index 000000000..3ca8563d8 --- /dev/null +++ b/typo3-ter/webdav/2014-11-27.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-017: Improper Access Control in WebDav for filemounts (webdav)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-017/ +cve: +branches: + master: + time: 2014-11-27 12:00 + versions: [>=2.0.0,<=2.0.0] +reference: composer://typo3-ter/webdav diff --git a/typo3-ter/wec-discussion/2008-07-01.yaml b/typo3-ter/wec-discussion/2008-07-01.yaml new file mode 100644 index 000000000..05fa29b32 --- /dev/null +++ b/typo3-ter/wec-discussion/2008-07-01.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-20080701-4: Multiple vulnerabilities in extension WEC Discussion Forum (wec_discussion)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-4/ +cve: +branches: + master: + time: 2008-07-01 12:00 + versions: [<=1.6.2] +reference: composer://typo3-ter/wec-discussion diff --git a/typo3-ter/wec-discussion/2011-04-07.yaml b/typo3-ter/wec-discussion/2011-04-07.yaml new file mode 100644 index 000000000..2fbd554e4 --- /dev/null +++ b/typo3-ter/wec-discussion/2011-04-07.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-SA-2011-003: SQL Injection vulnerabilities in extension 'WEC Discussion Forum' (wec_discussion)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-003/ +cve: +branches: + master: + time: 2011-04-07 12:00 + versions: [<=2.1.0] +reference: composer://typo3-ter/wec-discussion diff --git a/typo3-ter/wf-gallery/2014-12-15.yaml b/typo3-ter/wf-gallery/2014-12-15.yaml new file mode 100644 index 000000000..171311c56 --- /dev/null +++ b/typo3-ter/wf-gallery/2014-12-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-021: Cross-Site Scripting vulnerability in wfGallery (wf_gallery)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-021/ +cve: +branches: + master: + time: 2014-12-15 12:00 + versions: [<=1.0.3] +reference: composer://typo3-ter/wf-gallery diff --git a/typo3-ter/wt-directory/2015-06-15.yaml b/typo3-ter/wt-directory/2015-06-15.yaml new file mode 100644 index 000000000..30735bad4 --- /dev/null +++ b/typo3-ter/wt-directory/2015-06-15.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-008: SQL Injection vulnerability in extension wt_directory (wt_directory)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-008/ +cve: +branches: + master: + time: 2015-06-15 12:00 + versions: [<=1.4.1] +reference: composer://typo3-ter/wt-directory diff --git a/typo3-ter/yag/2014-02-12.yaml b/typo3-ter/yag/2014-02-12.yaml new file mode 100644 index 000000000..188b1b37a --- /dev/null +++ b/typo3-ter/yag/2014-02-12.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ +cve: +branches: + master: + time: 2014-02-12 12:00 + versions: [<=3.0.0] +reference: composer://typo3-ter/yag diff --git a/typo3-ter/zend-framework/2015-09-30.yaml b/typo3-ter/zend-framework/2015-09-30.yaml new file mode 100644 index 000000000..aea447746 --- /dev/null +++ b/typo3-ter/zend-framework/2015-09-30.yaml @@ -0,0 +1,8 @@ +title: "TYPO3-EXT-SA-2015-019: File Disclosure in extension 'Zend Framework Integration' (zend_framework)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-019/ +cve: +branches: + master: + time: 2015-09-30 12:00 + versions: [<=1.7.6] +reference: composer://typo3-ter/zend-framework From d49db73e2ed08c1f433547e543281460c01b468d Mon Sep 17 00:00:00 2001 From: Roland Waldner Date: Mon, 30 Nov 2015 13:36:43 +0100 Subject: [PATCH 2/3] [TASK] Add tilde for missing CVE --- typo3-ter/air-filemanager/2008-05-15.yaml | 2 +- typo3-ter/ameos-dragndropupload/2011-09-07.yaml | 2 +- typo3-ter/ameos-dragndropupload/2014-12-15.yaml | 2 +- typo3-ter/ameos-formidable/2012-06-07.yaml | 2 +- typo3-ter/beko-beuserlog/2015-06-15.yaml | 2 +- typo3-ter/cal/2009-12-01.yaml | 2 +- typo3-ter/cal/2010-03-02.yaml | 2 +- typo3-ter/cc-awstats/2013-09-25.yaml | 2 +- typo3-ter/commerce/2008-10-20.yaml | 2 +- typo3-ter/commerce/2009-08-18.yaml | 2 +- typo3-ter/commerce/2012-12-21.yaml | 2 +- typo3-ter/content-rating-extbase/2015-01-09.yaml | 2 +- typo3-ter/content-rating/2015-01-09.yaml | 2 +- typo3-ter/cooluri/2013-02-19.yaml | 2 +- typo3-ter/dam/2011-01-26.yaml | 2 +- typo3-ter/dce/2014-10-17.yaml | 2 +- typo3-ter/devlog/2015-06-15.yaml | 2 +- typo3-ter/direct-mail-subscription/2011-09-07.yaml | 2 +- typo3-ter/direct-mail-subscription/2014-02-12.yaml | 2 +- typo3-ter/direct-mail-subscription/2015-01-16.yaml | 2 +- typo3-ter/direct-mail/2009-12-01.yaml | 2 +- typo3-ter/direct-mail/2011-03-15.yaml | 2 +- typo3-ter/direct-mail/2013-09-25.yaml | 2 +- typo3-ter/dmmjobcontrol/2014-09-25.yaml | 2 +- typo3-ter/error-404-handling/2010-04-14.yaml | 2 +- typo3-ter/eu-ldap/2015-09-30.yaml | 2 +- typo3-ter/fal-sftp/2014-10-17.yaml | 2 +- typo3-ter/feupload/2015-06-15.yaml | 2 +- typo3-ter/formhandler/2011-08-25.yaml | 2 +- typo3-ter/formhandler/2012-10-25.yaml | 2 +- typo3-ter/formhandler/2013-08-05.yaml | 2 +- typo3-ter/formhandler/2013-09-25.yaml | 2 +- typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml | 2 +- typo3-ter/jm-gallery/2011-08-03.yaml | 2 +- typo3-ter/jobfair/2015-06-15.yaml | 2 +- typo3-ter/js-faq/2015-06-15.yaml | 2 +- typo3-ter/ke-search/2011-06-29.yaml | 2 +- typo3-ter/ke-stats/2008-05-13.yaml | 2 +- typo3-ter/kj-imagelightbox2/2008-05-27.yaml | 2 +- typo3-ter/locator/2015-06-15.yaml | 2 +- typo3-ter/mh-httpbl/2015-09-30.yaml | 2 +- typo3-ter/mkforms/2015-09-30.yaml | 2 +- typo3-ter/mm-forum/2010-03-16.yaml | 2 +- typo3-ter/mm-forum/2014-02-12.yaml | 2 +- typo3-ter/multishop/2013-06-03.yaml | 2 +- typo3-ter/ncgov-smoelenboek/2015-06-15.yaml | 2 +- typo3-ter/news/2015-09-30.yaml | 2 +- typo3-ter/pagenotfoundhandling/2015-06-29.yaml | 2 +- typo3-ter/pbsurvey/2008-05-13.yaml | 2 +- typo3-ter/pbsurvey/2011-08-25.yaml | 2 +- typo3-ter/phpmyadmin/2009-01-23.yaml | 2 +- typo3-ter/phpmyadmin/2011-05-23.yaml | 2 +- typo3-ter/phpmyadmin/2011-07-06.yaml | 2 +- typo3-ter/phpmyadmin/2011-07-25.yaml | 2 +- typo3-ter/phpmyadmin/2011-08-26.yaml | 2 +- typo3-ter/phpmyadmin/2011-09-15.yaml | 2 +- typo3-ter/phpmyadmin/2011-10-18.yaml | 2 +- typo3-ter/phpmyadmin/2011-11-15.yaml | 2 +- typo3-ter/phpmyadmin/2014-09-26.yaml | 2 +- typo3-ter/phpmyadmin/2014-11-05.yaml | 2 +- typo3-ter/phpmyadmin/2014-12-08.yaml | 2 +- typo3-ter/powermail/2011-05-11.yaml | 2 +- typo3-ter/powermail/2012-03-28.yaml | 2 +- typo3-ter/powermail/2012-06-07.yaml | 2 +- typo3-ter/powermail/2014-04-10.yaml | 2 +- typo3-ter/pt-extbase/2014-02-12.yaml | 2 +- typo3-ter/realurl/2013-09-25.yaml | 2 +- typo3-ter/rgsmoothgallery/2011-09-07.yaml | 2 +- typo3-ter/rlmp-eventdb/2008-05-13.yaml | 2 +- typo3-ter/sb-akronymmanager/2015-06-18.yaml | 2 +- typo3-ter/seminars/2012-07-03.yaml | 2 +- typo3-ter/seo-basics/2012-03-28.yaml | 2 +- typo3-ter/seo-basics/2012-06-07.yaml | 2 +- typo3-ter/sg-zfelib/2008-05-27.yaml | 2 +- typo3-ter/si-bibtex/2014-12-15.yaml | 2 +- typo3-ter/solr/2013-09-25.yaml | 2 +- typo3-ter/sr-feuser-register/2010-04-14.yaml | 2 +- typo3-ter/sr-feuser-register/2010-07-28.yaml | 2 +- typo3-ter/sr-feuser-register/2012-02-23.yaml | 2 +- typo3-ter/sr-feuser-register/2013-08-05.yaml | 2 +- typo3-ter/sr-sendcard/2008-07-01.yaml | 2 +- typo3-ter/static-info-tables/2013-02-19.yaml | 2 +- typo3-ter/t3adminer/2015-09-30.yaml | 2 +- typo3-ter/t3blog/2010-02-01.yaml | 2 +- typo3-ter/t3blog/2011-09-27.yaml | 2 +- typo3-ter/t3m/2009-08-18.yaml | 2 +- typo3-ter/t3quixplorer/2015-09-30.yaml | 2 +- typo3-ter/th-mailformplus/2008-05-05.yaml | 2 +- typo3-ter/th-mailformplus/2011-09-07.yaml | 2 +- typo3-ter/tipafriend/2010-04-14.yaml | 2 +- typo3-ter/tt-news/2014-02-12.yaml | 2 +- typo3-ter/ve-guestbook/2009-06-16.yaml | 2 +- typo3-ter/webdav/2014-11-27.yaml | 2 +- typo3-ter/wec-discussion/2008-07-01.yaml | 2 +- typo3-ter/wec-discussion/2011-04-07.yaml | 2 +- typo3-ter/wf-gallery/2014-12-15.yaml | 2 +- typo3-ter/wt-directory/2015-06-15.yaml | 2 +- typo3-ter/yag/2014-02-12.yaml | 2 +- typo3-ter/zend-framework/2015-09-30.yaml | 2 +- 99 files changed, 99 insertions(+), 99 deletions(-) diff --git a/typo3-ter/air-filemanager/2008-05-15.yaml b/typo3-ter/air-filemanager/2008-05-15.yaml index 3abbfec03..b51fdc7e1 100644 --- a/typo3-ter/air-filemanager/2008-05-15.yaml +++ b/typo3-ter/air-filemanager/2008-05-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080515-2: Multiple vulnerabilities in extension Frontend Filemanager (air_filemanager)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080515-2/ -cve: +cve: ~ branches: master: time: 2008-05-15 12:00 diff --git a/typo3-ter/ameos-dragndropupload/2011-09-07.yaml b/typo3-ter/ameos-dragndropupload/2011-09-07.yaml index d443039df..dffe2133a 100644 --- a/typo3-ter/ameos-dragndropupload/2011-09-07.yaml +++ b/typo3-ter/ameos-dragndropupload/2011-09-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-010: A vulnerability in extension Drag Drop Mass Upload (ameos_dragndropupload)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-010/ -cve: +cve: ~ branches: master: time: 2011-09-07 12:00 diff --git a/typo3-ter/ameos-dragndropupload/2014-12-15.yaml b/typo3-ter/ameos-dragndropupload/2014-12-15.yaml index 39c39ddd7..8e255f3b2 100644 --- a/typo3-ter/ameos-dragndropupload/2014-12-15.yaml +++ b/typo3-ter/ameos-dragndropupload/2014-12-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-019: Multiple vulnerabilities in Drag Drop Mass Upload (ameos_dragndropupload)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-019/ -cve: +cve: ~ branches: master: time: 2014-12-15 12:00 diff --git a/typo3-ter/ameos-formidable/2012-06-07.yaml b/typo3-ter/ameos-formidable/2012-06-07.yaml index 4e2c7ff06..d6a40b9c7 100644 --- a/typo3-ter/ameos-formidable/2012-06-07.yaml +++ b/typo3-ter/ameos-formidable/2012-06-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-008: Cross-site scripting vulnerability in extension Ameos Formidable (ameos_formidable)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-008/ -cve: +cve: ~ branches: master: time: 2012-06-07 12:00 diff --git a/typo3-ter/beko-beuserlog/2015-06-15.yaml b/typo3-ter/beko-beuserlog/2015-06-15.yaml index a10c5113f..52bc9684c 100644 --- a/typo3-ter/beko-beuserlog/2015-06-15.yaml +++ b/typo3-ter/beko-beuserlog/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-007: Cross-Site Scripting in extension BE User Log (beko_beuserlog)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-007/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/cal/2009-12-01.yaml b/typo3-ter/cal/2009-12-01.yaml index e9f74f7f8..93f73eaf8 100644 --- a/typo3-ter/cal/2009-12-01.yaml +++ b/typo3-ter/cal/2009-12-01.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2009-019: Blind SQL Injection vulnerability in extension Calendar Base (cal)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-019/ -cve: +cve: ~ branches: master: time: 2009-12-01 12:00 diff --git a/typo3-ter/cal/2010-03-02.yaml b/typo3-ter/cal/2010-03-02.yaml index b0d5e402d..873a9ca8a 100644 --- a/typo3-ter/cal/2010-03-02.yaml +++ b/typo3-ter/cal/2010-03-02.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2010-005: Blind SQL Injection vulnerability in extension Calendar Base (cal)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-005/ -cve: +cve: ~ branches: master: time: 2010-03-02 12:00 diff --git a/typo3-ter/cc-awstats/2013-09-25.yaml b/typo3-ter/cc-awstats/2013-09-25.yaml index a70d89461..00bff05ed 100644 --- a/typo3-ter/cc-awstats/2013-09-25.yaml +++ b/typo3-ter/cc-awstats/2013-09-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-018: Several vulnerabilities in extension AWStats (cc_awstats)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-018/ -cve: +cve: ~ branches: master: time: 2013-09-25 12:00 diff --git a/typo3-ter/commerce/2008-10-20.yaml b/typo3-ter/commerce/2008-10-20.yaml index e5db0c874..57eda4805 100644 --- a/typo3-ter/commerce/2008-10-20.yaml +++ b/typo3-ter/commerce/2008-10-20.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20081020-2: SQL Injection in extension Commerce (commerce)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20081020-2/ -cve: +cve: ~ branches: master: time: 2008-10-20 12:00 diff --git a/typo3-ter/commerce/2009-08-18.yaml b/typo3-ter/commerce/2009-08-18.yaml index a4d57a4ee..9bc3d3c64 100644 --- a/typo3-ter/commerce/2009-08-18.yaml +++ b/typo3-ter/commerce/2009-08-18.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2009-011: Cross-Site Scripting vulnerability in extension Commerce (commerce)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-011/ -cve: +cve: ~ branches: master: time: 2009-08-18 12:00 diff --git a/typo3-ter/commerce/2012-12-21.yaml b/typo3-ter/commerce/2012-12-21.yaml index 7a0f739ce..46449f486 100644 --- a/typo3-ter/commerce/2012-12-21.yaml +++ b/typo3-ter/commerce/2012-12-21.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-013: Several Vulnerabilities in extension commerce (commerce)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-013/ -cve: +cve: ~ branches: master: time: 2012-12-21 12:00 diff --git a/typo3-ter/content-rating-extbase/2015-01-09.yaml b/typo3-ter/content-rating-extbase/2015-01-09.yaml index be01654ec..cb0fa9831 100644 --- a/typo3-ter/content-rating-extbase/2015-01-09.yaml +++ b/typo3-ter/content-rating-extbase/2015-01-09.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-003: Multiple vulnerabilities in Content Rating Extbase (content_rating_extbase)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-003/ -cve: +cve: ~ branches: master: time: 2015-01-09 12:00 diff --git a/typo3-ter/content-rating/2015-01-09.yaml b/typo3-ter/content-rating/2015-01-09.yaml index f9a28316e..8116edebf 100644 --- a/typo3-ter/content-rating/2015-01-09.yaml +++ b/typo3-ter/content-rating/2015-01-09.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-002: Multiple vulnerabilities in Content Rating (content_rating)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-002/ -cve: +cve: ~ branches: master: time: 2015-01-09 12:00 diff --git a/typo3-ter/cooluri/2013-02-19.yaml b/typo3-ter/cooluri/2013-02-19.yaml index 47de70279..2af8a3230 100644 --- a/typo3-ter/cooluri/2013-02-19.yaml +++ b/typo3-ter/cooluri/2013-02-19.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-003: SQL Injection vulnerability in extension CoolURI (cooluri)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-003/ -cve: +cve: ~ branches: master: time: 2013-02-19 12:00 diff --git a/typo3-ter/dam/2011-01-26.yaml b/typo3-ter/dam/2011-01-26.yaml index bdf2c2b38..2c1306c77 100644 --- a/typo3-ter/dam/2011-01-26.yaml +++ b/typo3-ter/dam/2011-01-26.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2011-001: Cross-Site Scripting vulnerability in extension 'Media [DAM]' (dam)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-001/ -cve: +cve: ~ branches: master: time: 2011-01-26 12:00 diff --git a/typo3-ter/dce/2014-10-17.yaml b/typo3-ter/dce/2014-10-17.yaml index 8c9d9aa51..83dd00d74 100644 --- a/typo3-ter/dce/2014-10-17.yaml +++ b/typo3-ter/dce/2014-10-17.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-015: Information Disclosure vulnerability in Dynamic Content Elements (dce)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-015/ -cve: +cve: ~ branches: master: time: 2014-10-17 12:00 diff --git a/typo3-ter/devlog/2015-06-15.yaml b/typo3-ter/devlog/2015-06-15.yaml index 8f7b80ff0..2399b8f03 100644 --- a/typo3-ter/devlog/2015-06-15.yaml +++ b/typo3-ter/devlog/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-011: SQL Injection vulnerability in extension Developer Log (devlog)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-011/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/direct-mail-subscription/2011-09-07.yaml b/typo3-ter/direct-mail-subscription/2011-09-07.yaml index c52ff8a52..f6f0e2fea 100644 --- a/typo3-ter/direct-mail-subscription/2011-09-07.yaml +++ b/typo3-ter/direct-mail-subscription/2011-09-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-007: Several Vulnerabilities in extension Direct Mail Subscription (direct_mail_subscription)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-007/ -cve: +cve: ~ branches: master: time: 2011-09-07 12:00 diff --git a/typo3-ter/direct-mail-subscription/2014-02-12.yaml b/typo3-ter/direct-mail-subscription/2014-02-12.yaml index 813112abc..ed07a94ae 100644 --- a/typo3-ter/direct-mail-subscription/2014-02-12.yaml +++ b/typo3-ter/direct-mail-subscription/2014-02-12.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-004: Mass Assignment in extension Direct Mail Subscription (direct_mail_subscription)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-004/ -cve: +cve: ~ branches: master: time: 2014-02-12 12:00 diff --git a/typo3-ter/direct-mail-subscription/2015-01-16.yaml b/typo3-ter/direct-mail-subscription/2015-01-16.yaml index 98905c7f4..107a25b8f 100644 --- a/typo3-ter/direct-mail-subscription/2015-01-16.yaml +++ b/typo3-ter/direct-mail-subscription/2015-01-16.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-004: Information Disclosure in Direct Mail Subscription (direct_mail_subscription)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-004/ -cve: +cve: ~ branches: master: time: 2015-01-16 12:00 diff --git a/typo3-ter/direct-mail/2009-12-01.yaml b/typo3-ter/direct-mail/2009-12-01.yaml index 21553e7e2..12cd04884 100644 --- a/typo3-ter/direct-mail/2009-12-01.yaml +++ b/typo3-ter/direct-mail/2009-12-01.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2009-018: Cross-Site Scripting vulnerability in extension Direct Mail (direct_mail)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-018/ -cve: +cve: ~ branches: master: time: 2009-12-01 12:00 diff --git a/typo3-ter/direct-mail/2011-03-15.yaml b/typo3-ter/direct-mail/2011-03-15.yaml index 9fc215c07..18ae453ed 100644 --- a/typo3-ter/direct-mail/2011-03-15.yaml +++ b/typo3-ter/direct-mail/2011-03-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2011-002: XSS and SQL Injection vulnerabilities in extension 'Direct Mail' (direct_mail)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-002/ -cve: +cve: ~ branches: master: time: 2011-03-15 12:00 diff --git a/typo3-ter/direct-mail/2013-09-25.yaml b/typo3-ter/direct-mail/2013-09-25.yaml index c40f5c1ab..8b59000bf 100644 --- a/typo3-ter/direct-mail/2013-09-25.yaml +++ b/typo3-ter/direct-mail/2013-09-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-014: Information Disclosure in extension Direct Mail (direct_mail)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-014/ -cve: +cve: ~ branches: master: time: 2013-09-25 12:00 diff --git a/typo3-ter/dmmjobcontrol/2014-09-25.yaml b/typo3-ter/dmmjobcontrol/2014-09-25.yaml index 432f9de61..8ef00e1c6 100644 --- a/typo3-ter/dmmjobcontrol/2014-09-25.yaml +++ b/typo3-ter/dmmjobcontrol/2014-09-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-012: Several vulnerabilities in extension JobControl (dmmjobcontrol)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-012/ -cve: +cve: ~ branches: master: time: 2014-09-25 12:00 diff --git a/typo3-ter/error-404-handling/2010-04-14.yaml b/typo3-ter/error-404-handling/2010-04-14.yaml index 44a59492e..d75d187f9 100644 --- a/typo3-ter/error-404-handling/2010-04-14.yaml +++ b/typo3-ter/error-404-handling/2010-04-14.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2010-011: Vulnerabilitiy in extension 404 Error Page Handling (error_404_handling)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-011/ -cve: +cve: ~ branches: master: time: 2010-04-14 12:00 diff --git a/typo3-ter/eu-ldap/2015-09-30.yaml b/typo3-ter/eu-ldap/2015-09-30.yaml index 6feff0895..620d74a5d 100644 --- a/typo3-ter/eu-ldap/2015-09-30.yaml +++ b/typo3-ter/eu-ldap/2015-09-30.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-016: Information Disclosure in extension 'LDAP' (eu_ldap)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-016/ -cve: +cve: ~ branches: master: time: 2015-09-30 12:00 diff --git a/typo3-ter/fal-sftp/2014-10-17.yaml b/typo3-ter/fal-sftp/2014-10-17.yaml index 8476fdc73..0833a7663 100644 --- a/typo3-ter/fal-sftp/2014-10-17.yaml +++ b/typo3-ter/fal-sftp/2014-10-17.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-014: Improper Access Control vulnerability in extension fal_sftp (fal_sftp)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-014/ -cve: +cve: ~ branches: master: time: 2014-10-17 12:00 diff --git a/typo3-ter/feupload/2015-06-15.yaml b/typo3-ter/feupload/2015-06-15.yaml index cab1b1568..87ef3c4f3 100644 --- a/typo3-ter/feupload/2015-06-15.yaml +++ b/typo3-ter/feupload/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-006: Arbitrary Code Execution in extension Frontend User Upload (feupload)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-006/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/formhandler/2011-08-25.yaml b/typo3-ter/formhandler/2011-08-25.yaml index dc4c394a0..435715aa7 100644 --- a/typo3-ter/formhandler/2011-08-25.yaml +++ b/typo3-ter/formhandler/2011-08-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-003: Several Vulnerabilities in extension Formhandler (formhandler)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-003/ -cve: +cve: ~ branches: master: time: 2011-08-25 12:00 diff --git a/typo3-ter/formhandler/2012-10-25.yaml b/typo3-ter/formhandler/2012-10-25.yaml index 5c0489f4e..9d244cd1c 100644 --- a/typo3-ter/formhandler/2012-10-25.yaml +++ b/typo3-ter/formhandler/2012-10-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-012: Several Vulnerabilities in extension Formhandler (formhandler)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-012/ -cve: +cve: ~ branches: master: time: 2012-10-25 12:00 diff --git a/typo3-ter/formhandler/2013-08-05.yaml b/typo3-ter/formhandler/2013-08-05.yaml index de5225eca..dde94d791 100644 --- a/typo3-ter/formhandler/2013-08-05.yaml +++ b/typo3-ter/formhandler/2013-08-05.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-012: Several vulnerabilities in extension Formhandler (formhandler)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-012/ -cve: +cve: ~ branches: master: time: 2013-08-05 12:00 diff --git a/typo3-ter/formhandler/2013-09-25.yaml b/typo3-ter/formhandler/2013-09-25.yaml index 92fbd92e2..1c551c6b4 100644 --- a/typo3-ter/formhandler/2013-09-25.yaml +++ b/typo3-ter/formhandler/2013-09-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-016: SQL Injection vulnerability in extension Formhandler (formhandler)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-016/ -cve: +cve: ~ branches: master: time: 2013-09-25 12:00 diff --git a/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml b/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml index 773eac1c9..bd6c8b14b 100644 --- a/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml +++ b/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-001: Improper Authentication in LDAP / SSO Authentication (ig_ldap_sso_auth)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-001/ -cve: +cve: ~ branches: master: time: 2015-01-08 12:00 diff --git a/typo3-ter/jm-gallery/2011-08-03.yaml b/typo3-ter/jm-gallery/2011-08-03.yaml index 993d85c8d..ce9ae2d82 100644 --- a/typo3-ter/jm-gallery/2011-08-03.yaml +++ b/typo3-ter/jm-gallery/2011-08-03.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-002: Multiple SQL Injection vulnerabilities in extension 'Website Photo Gallery' (jm_gallery)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-002/ -cve: +cve: ~ branches: master: time: 2011-08-03 12:00 diff --git a/typo3-ter/jobfair/2015-06-15.yaml b/typo3-ter/jobfair/2015-06-15.yaml index 2fee6b8a5..14a6b1b65 100644 --- a/typo3-ter/jobfair/2015-06-15.yaml +++ b/typo3-ter/jobfair/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-013: Arbitrary Code Execution in extension Job Fair (jobfair)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-013/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/js-faq/2015-06-15.yaml b/typo3-ter/js-faq/2015-06-15.yaml index e9d8fd35a..d56895551 100644 --- a/typo3-ter/js-faq/2015-06-15.yaml +++ b/typo3-ter/js-faq/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-012: SQL Injection vulnerability in extension FAQ - Frequently Asked Questions (js_faq)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-012/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/ke-search/2011-06-29.yaml b/typo3-ter/ke-search/2011-06-29.yaml index 9adbeb92e..b8ddbefac 100644 --- a/typo3-ter/ke-search/2011-06-29.yaml +++ b/typo3-ter/ke-search/2011-06-29.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2011-007: SQL Injection vulnerability in extension Faceted Search (ke_search)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-007/ -cve: +cve: ~ branches: master: time: 2011-06-29 12:00 diff --git a/typo3-ter/ke-stats/2008-05-13.yaml b/typo3-ter/ke-stats/2008-05-13.yaml index 1a2d4e091..1a907e10d 100644 --- a/typo3-ter/ke-stats/2008-05-13.yaml +++ b/typo3-ter/ke-stats/2008-05-13.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080513-4: Multiple vulnerabilities in extension Statistics (ke_stats)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-4/ -cve: +cve: ~ branches: master: time: 2008-05-13 12:00 diff --git a/typo3-ter/kj-imagelightbox2/2008-05-27.yaml b/typo3-ter/kj-imagelightbox2/2008-05-27.yaml index 2839d377b..06cba7eef 100644 --- a/typo3-ter/kj-imagelightbox2/2008-05-27.yaml +++ b/typo3-ter/kj-imagelightbox2/2008-05-27.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080527-1: Cross Site Scripting vulnerability in extension 'KJ: Image Lightbox v2' (kj_imagelightbox2)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-1/ -cve: +cve: ~ branches: master: time: 2008-05-27 12:00 diff --git a/typo3-ter/locator/2015-06-15.yaml b/typo3-ter/locator/2015-06-15.yaml index 165b16bd0..30e273361 100644 --- a/typo3-ter/locator/2015-06-15.yaml +++ b/typo3-ter/locator/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-009: SQL Injection vulnerability in extension Store Locator (locator)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-009/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/mh-httpbl/2015-09-30.yaml b/typo3-ter/mh-httpbl/2015-09-30.yaml index 64eb4a7c8..de431c62f 100644 --- a/typo3-ter/mh-httpbl/2015-09-30.yaml +++ b/typo3-ter/mh-httpbl/2015-09-30.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-021: SQL Injection in extension 'http:BL Blocking' (mh_httpbl)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-021/ -cve: +cve: ~ branches: master: time: 2015-09-30 12:00 diff --git a/typo3-ter/mkforms/2015-09-30.yaml b/typo3-ter/mkforms/2015-09-30.yaml index f5d087e18..273bd2f57 100644 --- a/typo3-ter/mkforms/2015-09-30.yaml +++ b/typo3-ter/mkforms/2015-09-30.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-022: Arbitrary Code Execution in extension 'MK Forms' (mkforms)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-022/ -cve: +cve: ~ branches: master: time: 2015-09-30 12:00 diff --git a/typo3-ter/mm-forum/2010-03-16.yaml b/typo3-ter/mm-forum/2010-03-16.yaml index 05b11adbb..ffd501e03 100644 --- a/typo3-ter/mm-forum/2010-03-16.yaml +++ b/typo3-ter/mm-forum/2010-03-16.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2010-007: Cross-Site Scripting vulnerability in extension mm_forum (mm_forum)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-007/ -cve: +cve: ~ branches: master: time: 2010-03-16 12:00 diff --git a/typo3-ter/mm-forum/2014-02-12.yaml b/typo3-ter/mm-forum/2014-02-12.yaml index ec3fbd50b..129f67098 100644 --- a/typo3-ter/mm-forum/2014-02-12.yaml +++ b/typo3-ter/mm-forum/2014-02-12.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-001: Several vulnerabilities in extension mm_forum (mm_forum)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-001/ -cve: +cve: ~ branches: master: time: 2014-02-12 12:00 diff --git a/typo3-ter/multishop/2013-06-03.yaml b/typo3-ter/multishop/2013-06-03.yaml index 303ca9460..c3604d1fa 100644 --- a/typo3-ter/multishop/2013-06-03.yaml +++ b/typo3-ter/multishop/2013-06-03.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-010: SQL Injection vulnerability in extension Multishop (multishop)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-010/ -cve: +cve: ~ branches: master: time: 2013-06-03 12:00 diff --git a/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml b/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml index c4b538a1a..c3d87315c 100644 --- a/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml +++ b/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-010: SQL Injection vulnerability in extension Smoelenboek (ncgov_smoelenboek)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-010/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/news/2015-09-30.yaml b/typo3-ter/news/2015-09-30.yaml index bbee7eb36..cbb379d61 100644 --- a/typo3-ter/news/2015-09-30.yaml +++ b/typo3-ter/news/2015-09-30.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-017: Cross-Site Scripting in extension 'News system' (news)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-017/ -cve: +cve: ~ branches: master: time: 2015-09-30 12:00 diff --git a/typo3-ter/pagenotfoundhandling/2015-06-29.yaml b/typo3-ter/pagenotfoundhandling/2015-06-29.yaml index a8bd8b2f7..23a64441e 100644 --- a/typo3-ter/pagenotfoundhandling/2015-06-29.yaml +++ b/typo3-ter/pagenotfoundhandling/2015-06-29.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-015: Cross-Site Scripting in extension '404 Page not found handling' (pagenotfoundhandling)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-015/ -cve: +cve: ~ branches: master: time: 2015-06-29 12:00 diff --git a/typo3-ter/pbsurvey/2008-05-13.yaml b/typo3-ter/pbsurvey/2008-05-13.yaml index f236c73d8..aa6ce8c7b 100644 --- a/typo3-ter/pbsurvey/2008-05-13.yaml +++ b/typo3-ter/pbsurvey/2008-05-13.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080513-2: Cross Site Scripting vulnerability in extension Questionaire (pbsurvey)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-2/ -cve: +cve: ~ branches: master: time: 2008-05-13 12:00 diff --git a/typo3-ter/pbsurvey/2011-08-25.yaml b/typo3-ter/pbsurvey/2011-08-25.yaml index 0b9332566..cd4dd3271 100644 --- a/typo3-ter/pbsurvey/2011-08-25.yaml +++ b/typo3-ter/pbsurvey/2011-08-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-004: Cross Site Scripting Vulnerability in extension Questionaire (pbsurvey)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-004/ -cve: +cve: ~ branches: master: time: 2011-08-25 12:00 diff --git a/typo3-ter/phpmyadmin/2009-01-23.yaml b/typo3-ter/phpmyadmin/2009-01-23.yaml index 0cbe5f7d2..42036cc5a 100644 --- a/typo3-ter/phpmyadmin/2009-01-23.yaml +++ b/typo3-ter/phpmyadmin/2009-01-23.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2009-015: XSS and SQL injection vulnerabilities in extension 'phpMyAdmin' (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-015/ -cve: +cve: ~ branches: master: time: 2009-01-23 12:00 diff --git a/typo3-ter/phpmyadmin/2011-05-23.yaml b/typo3-ter/phpmyadmin/2011-05-23.yaml index 86479e76a..87acfb2af 100644 --- a/typo3-ter/phpmyadmin/2011-05-23.yaml +++ b/typo3-ter/phpmyadmin/2011-05-23.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2011-005: Cross-Site Scripting and Open Redirection vulnerability in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-005/ -cve: +cve: ~ branches: master: time: 2011-05-23 12:00 diff --git a/typo3-ter/phpmyadmin/2011-07-06.yaml b/typo3-ter/phpmyadmin/2011-07-06.yaml index 5e03b97ca..7f2081928 100644 --- a/typo3-ter/phpmyadmin/2011-07-06.yaml +++ b/typo3-ter/phpmyadmin/2011-07-06.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2011-008: Directory Traversal and Code Injection vulnerability in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-008/ -cve: +cve: ~ branches: master: time: 2011-07-06 12:00 diff --git a/typo3-ter/phpmyadmin/2011-07-25.yaml b/typo3-ter/phpmyadmin/2011-07-25.yaml index 1b28965c0..cba99f1a3 100644 --- a/typo3-ter/phpmyadmin/2011-07-25.yaml +++ b/typo3-ter/phpmyadmin/2011-07-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-001: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-001/ -cve: +cve: ~ branches: master: time: 2011-07-25 12:00 diff --git a/typo3-ter/phpmyadmin/2011-08-26.yaml b/typo3-ter/phpmyadmin/2011-08-26.yaml index a1e54bf00..5aa2a4ddc 100644 --- a/typo3-ter/phpmyadmin/2011-08-26.yaml +++ b/typo3-ter/phpmyadmin/2011-08-26.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-005: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-005/ -cve: +cve: ~ branches: master: time: 2011-08-26 12:00 diff --git a/typo3-ter/phpmyadmin/2011-09-15.yaml b/typo3-ter/phpmyadmin/2011-09-15.yaml index e6ef8cfd5..bcf68f6fa 100644 --- a/typo3-ter/phpmyadmin/2011-09-15.yaml +++ b/typo3-ter/phpmyadmin/2011-09-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-011: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-011/ -cve: +cve: ~ branches: master: time: 2011-09-15 12:00 diff --git a/typo3-ter/phpmyadmin/2011-10-18.yaml b/typo3-ter/phpmyadmin/2011-10-18.yaml index 8692448ff..e02b46560 100644 --- a/typo3-ter/phpmyadmin/2011-10-18.yaml +++ b/typo3-ter/phpmyadmin/2011-10-18.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-014: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-014/ -cve: +cve: ~ branches: master: time: 2011-10-18 12:00 diff --git a/typo3-ter/phpmyadmin/2011-11-15.yaml b/typo3-ter/phpmyadmin/2011-11-15.yaml index 84ee7337d..16dfd3aeb 100644 --- a/typo3-ter/phpmyadmin/2011-11-15.yaml +++ b/typo3-ter/phpmyadmin/2011-11-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-018/ -cve: +cve: ~ branches: master: time: 2011-11-15 12:00 diff --git a/typo3-ter/phpmyadmin/2014-09-26.yaml b/typo3-ter/phpmyadmin/2014-09-26.yaml index 9a0215f37..a078eb2ec 100644 --- a/typo3-ter/phpmyadmin/2014-09-26.yaml +++ b/typo3-ter/phpmyadmin/2014-09-26.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-011: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-011/ -cve: +cve: ~ branches: master: time: 2014-09-26 12:00 diff --git a/typo3-ter/phpmyadmin/2014-11-05.yaml b/typo3-ter/phpmyadmin/2014-11-05.yaml index e22a6f02b..ca30756e8 100644 --- a/typo3-ter/phpmyadmin/2014-11-05.yaml +++ b/typo3-ter/phpmyadmin/2014-11-05.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-016: Cross-Site Scripting vulnerability in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-016/ -cve: +cve: ~ branches: master: time: 2014-11-05 12:00 diff --git a/typo3-ter/phpmyadmin/2014-12-08.yaml b/typo3-ter/phpmyadmin/2014-12-08.yaml index 27eaf3bcc..e78f6803f 100644 --- a/typo3-ter/phpmyadmin/2014-12-08.yaml +++ b/typo3-ter/phpmyadmin/2014-12-08.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-018/ -cve: +cve: ~ branches: master: time: 2014-12-08 12:00 diff --git a/typo3-ter/powermail/2011-05-11.yaml b/typo3-ter/powermail/2011-05-11.yaml index d78a778c4..28a1480c1 100644 --- a/typo3-ter/powermail/2011-05-11.yaml +++ b/typo3-ter/powermail/2011-05-11.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2011-004: Blind SQL Injection vulnerability in extension 'powermail' (powermail)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-004/ -cve: +cve: ~ branches: master: time: 2011-05-11 12:00 diff --git a/typo3-ter/powermail/2012-03-28.yaml b/typo3-ter/powermail/2012-03-28.yaml index 7d49d0c2a..cb2251bac 100644 --- a/typo3-ter/powermail/2012-03-28.yaml +++ b/typo3-ter/powermail/2012-03-28.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-004: Cross-Site Scripting vulnerability in extension powermail for TYPO3 (powermail)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-004/ -cve: +cve: ~ branches: master: time: 2012-03-28 12:00 diff --git a/typo3-ter/powermail/2012-06-07.yaml b/typo3-ter/powermail/2012-06-07.yaml index 9bfd45382..998d21cbe 100644 --- a/typo3-ter/powermail/2012-06-07.yaml +++ b/typo3-ter/powermail/2012-06-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-009: Cross-site scripting vulnerability in extension powermail for TYPO3 (powermail)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-009/ -cve: +cve: ~ branches: master: time: 2012-06-07 12:00 diff --git a/typo3-ter/powermail/2014-04-10.yaml b/typo3-ter/powermail/2014-04-10.yaml index b56f0f9ae..5e7458bbf 100644 --- a/typo3-ter/powermail/2014-04-10.yaml +++ b/typo3-ter/powermail/2014-04-10.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-006: Captcha Bypass in extension 'powermail' (powermail)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-006/ -cve: +cve: ~ branches: master: time: 2014-04-10 12:00 diff --git a/typo3-ter/pt-extbase/2014-02-12.yaml b/typo3-ter/pt-extbase/2014-02-12.yaml index a63f5b39d..4d29bb1cf 100644 --- a/typo3-ter/pt-extbase/2014-02-12.yaml +++ b/typo3-ter/pt-extbase/2014-02-12.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ -cve: +cve: ~ branches: master: time: 2014-02-12 12:00 diff --git a/typo3-ter/realurl/2013-09-25.yaml b/typo3-ter/realurl/2013-09-25.yaml index 63d4e7d2a..480412fb4 100644 --- a/typo3-ter/realurl/2013-09-25.yaml +++ b/typo3-ter/realurl/2013-09-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-015: SQL Injection vulnerability in extension RealURL: speaking paths for TYPO3 (realurl)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-015/ -cve: +cve: ~ branches: master: time: 2013-09-25 12:00 diff --git a/typo3-ter/rgsmoothgallery/2011-09-07.yaml b/typo3-ter/rgsmoothgallery/2011-09-07.yaml index bfa4dcae4..5db67e2b7 100644 --- a/typo3-ter/rgsmoothgallery/2011-09-07.yaml +++ b/typo3-ter/rgsmoothgallery/2011-09-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-008: Several Vulnerabilities in extension SmoothGallery for TYPO3 (rgsmoothgallery)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-008/ -cve: +cve: ~ branches: master: time: 2011-09-07 12:00 diff --git a/typo3-ter/rlmp-eventdb/2008-05-13.yaml b/typo3-ter/rlmp-eventdb/2008-05-13.yaml index cb2d14933..e52efe60b 100644 --- a/typo3-ter/rlmp-eventdb/2008-05-13.yaml +++ b/typo3-ter/rlmp-eventdb/2008-05-13.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080513-3: Cross Site Scripting vulnerability in extension Event Database (rlmp_eventdb)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-3/ -cve: +cve: ~ branches: master: time: 2008-05-13 12:00 diff --git a/typo3-ter/sb-akronymmanager/2015-06-18.yaml b/typo3-ter/sb-akronymmanager/2015-06-18.yaml index db63fbab3..613ee2402 100644 --- a/typo3-ter/sb-akronymmanager/2015-06-18.yaml +++ b/typo3-ter/sb-akronymmanager/2015-06-18.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-014: SQL Injection in extension 'Akronymmanager' (sb_akronymmanager)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-014/ -cve: +cve: ~ branches: master: time: 2015-06-18 12:00 diff --git a/typo3-ter/seminars/2012-07-03.yaml b/typo3-ter/seminars/2012-07-03.yaml index 48a6aaeb7..752237ac0 100644 --- a/typo3-ter/seminars/2012-07-03.yaml +++ b/typo3-ter/seminars/2012-07-03.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-010: Cross-site scripting vulnerability in extension Seminars (seminars)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-010/ -cve: +cve: ~ branches: master: time: 2012-07-03 12:00 diff --git a/typo3-ter/seo-basics/2012-03-28.yaml b/typo3-ter/seo-basics/2012-03-28.yaml index 1fadea3fc..a19ad04e6 100644 --- a/typo3-ter/seo-basics/2012-03-28.yaml +++ b/typo3-ter/seo-basics/2012-03-28.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-006: Cross-Site Scripting vulnerability in extension Basic SEO Features (seo_basics)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-006/ -cve: +cve: ~ branches: master: time: 2012-03-28 12:00 diff --git a/typo3-ter/seo-basics/2012-06-07.yaml b/typo3-ter/seo-basics/2012-06-07.yaml index 7bf511adf..c5260193b 100644 --- a/typo3-ter/seo-basics/2012-06-07.yaml +++ b/typo3-ter/seo-basics/2012-06-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-007: SQL Injection vulnerability in extension Basic SEO Features (seo_basics)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-007/ -cve: +cve: ~ branches: master: time: 2012-06-07 12:00 diff --git a/typo3-ter/sg-zfelib/2008-05-27.yaml b/typo3-ter/sg-zfelib/2008-05-27.yaml index ec50186ce..81f29988c 100644 --- a/typo3-ter/sg-zfelib/2008-05-27.yaml +++ b/typo3-ter/sg-zfelib/2008-05-27.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080527-2: SQL Injection in extension 'Library for Frontend plugins' (sg_zfelib)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-2/ -cve: +cve: ~ branches: master: time: 2008-05-27 12:00 diff --git a/typo3-ter/si-bibtex/2014-12-15.yaml b/typo3-ter/si-bibtex/2014-12-15.yaml index d0cc46b6d..bf56e1cb1 100644 --- a/typo3-ter/si-bibtex/2014-12-15.yaml +++ b/typo3-ter/si-bibtex/2014-12-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-020: Multiple vulnerabilities in BibTex Publications (si_bibtex)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-020/ -cve: +cve: ~ branches: master: time: 2014-12-15 12:00 diff --git a/typo3-ter/solr/2013-09-25.yaml b/typo3-ter/solr/2013-09-25.yaml index 31d867be6..81dd4743c 100644 --- a/typo3-ter/solr/2013-09-25.yaml +++ b/typo3-ter/solr/2013-09-25.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-009: Several vulnerabilities in extension Apache Solr for TYPO3 (solr)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009/ -cve: +cve: ~ branches: master: time: 2013-09-25 12:00 diff --git a/typo3-ter/sr-feuser-register/2010-04-14.yaml b/typo3-ter/sr-feuser-register/2010-04-14.yaml index 4ec81e8c0..31cead642 100644 --- a/typo3-ter/sr-feuser-register/2010-04-14.yaml +++ b/typo3-ter/sr-feuser-register/2010-04-14.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2010-009: Vulnerabilitiy in extension Frontend User Registration (sr_feuser_register)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-009/ -cve: +cve: ~ branches: master: time: 2010-04-14 12:00 diff --git a/typo3-ter/sr-feuser-register/2010-07-28.yaml b/typo3-ter/sr-feuser-register/2010-07-28.yaml index d60269777..d0226f97c 100644 --- a/typo3-ter/sr-feuser-register/2010-07-28.yaml +++ b/typo3-ter/sr-feuser-register/2010-07-28.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2010-013: Vulnerabilitiy in extension Front End User Registration (sr_feuser_register)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-013/ -cve: +cve: ~ branches: master: time: 2010-07-28 12:00 diff --git a/typo3-ter/sr-feuser-register/2012-02-23.yaml b/typo3-ter/sr-feuser-register/2012-02-23.yaml index ecf2cbaf5..26f888e9d 100644 --- a/typo3-ter/sr-feuser-register/2012-02-23.yaml +++ b/typo3-ter/sr-feuser-register/2012-02-23.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2012-002: Information disclosure vulnerabilities in extension 'Front End User Registration' (sr_feuser_register)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-002/ -cve: +cve: ~ branches: master: time: 2012-02-23 12:00 diff --git a/typo3-ter/sr-feuser-register/2013-08-05.yaml b/typo3-ter/sr-feuser-register/2013-08-05.yaml index 7e4c6e265..ca027d7b2 100644 --- a/typo3-ter/sr-feuser-register/2013-08-05.yaml +++ b/typo3-ter/sr-feuser-register/2013-08-05.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-011: Cross-Site Scripting vulnerability in extension Front End User Registration (sr_feuser_register)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-011/ -cve: +cve: ~ branches: master: time: 2013-08-05 12:00 diff --git a/typo3-ter/sr-sendcard/2008-07-01.yaml b/typo3-ter/sr-sendcard/2008-07-01.yaml index 326c0ca12..bc42de464 100644 --- a/typo3-ter/sr-sendcard/2008-07-01.yaml +++ b/typo3-ter/sr-sendcard/2008-07-01.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080701-3: Multiple vulnerabilities in extension Send-A-Card (sr_sendcard)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-3/ -cve: +cve: ~ branches: master: time: 2008-07-01 12:00 diff --git a/typo3-ter/static-info-tables/2013-02-19.yaml b/typo3-ter/static-info-tables/2013-02-19.yaml index 69f57e336..8a39bd499 100644 --- a/typo3-ter/static-info-tables/2013-02-19.yaml +++ b/typo3-ter/static-info-tables/2013-02-19.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2013-004: Cross-Site Scripting vulnerability in extension Static Info Tables (static_info_tables)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-004/ -cve: +cve: ~ branches: master: time: 2013-02-19 12:00 diff --git a/typo3-ter/t3adminer/2015-09-30.yaml b/typo3-ter/t3adminer/2015-09-30.yaml index b10d091cb..c33f1e66c 100644 --- a/typo3-ter/t3adminer/2015-09-30.yaml +++ b/typo3-ter/t3adminer/2015-09-30.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-018: Information Disclosure in extension 'Adminer' (t3adminer)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-018/ -cve: +cve: ~ branches: master: time: 2015-09-30 12:00 diff --git a/typo3-ter/t3blog/2010-02-01.yaml b/typo3-ter/t3blog/2010-02-01.yaml index 45e0db21e..c8e06cc64 100644 --- a/typo3-ter/t3blog/2010-02-01.yaml +++ b/typo3-ter/t3blog/2010-02-01.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2010-002: Multiple vulnerabilities in extension T3BLOG (t3blog)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-002/ -cve: +cve: ~ branches: master: time: 2010-02-01 12:00 diff --git a/typo3-ter/t3blog/2011-09-27.yaml b/typo3-ter/t3blog/2011-09-27.yaml index 157c5a7ce..e6e448fcd 100644 --- a/typo3-ter/t3blog/2011-09-27.yaml +++ b/typo3-ter/t3blog/2011-09-27.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-013: Cross-Site scripting vulnerability in extension t3blog (t3blog)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-013/ -cve: +cve: ~ branches: master: time: 2011-09-27 12:00 diff --git a/typo3-ter/t3m/2009-08-18.yaml b/typo3-ter/t3m/2009-08-18.yaml index dabbf6be3..8b7d4d816 100644 --- a/typo3-ter/t3m/2009-08-18.yaml +++ b/typo3-ter/t3m/2009-08-18.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2009-012: Blind SQL Injection vulnerability in extension T3M E-Mail Marketing Tool (t3m)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-012/ -cve: +cve: ~ branches: master: time: 2009-08-18 12:00 diff --git a/typo3-ter/t3quixplorer/2015-09-30.yaml b/typo3-ter/t3quixplorer/2015-09-30.yaml index d369dacfc..7050b1111 100644 --- a/typo3-ter/t3quixplorer/2015-09-30.yaml +++ b/typo3-ter/t3quixplorer/2015-09-30.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-020: Cross-Site Request Forgery in extension 'Typo3 Quixplorer' (t3quixplorer)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-020/ -cve: +cve: ~ branches: master: time: 2015-09-30 12:00 diff --git a/typo3-ter/th-mailformplus/2008-05-05.yaml b/typo3-ter/th-mailformplus/2008-05-05.yaml index 14915d513..23b3ab107 100644 --- a/typo3-ter/th-mailformplus/2008-05-05.yaml +++ b/typo3-ter/th-mailformplus/2008-05-05.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080505-1: Multiple vulnerabilities in extension MailformPlus (th_mailformplus)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080505-1/ -cve: +cve: ~ branches: master: time: 2008-05-05 12:00 diff --git a/typo3-ter/th-mailformplus/2011-09-07.yaml b/typo3-ter/th-mailformplus/2011-09-07.yaml index 96afbcb5a..20f6b4a00 100644 --- a/typo3-ter/th-mailformplus/2011-09-07.yaml +++ b/typo3-ter/th-mailformplus/2011-09-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2011-009: Several Vulnerabilities in extension MailformPlus (th_mailformplus)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-009/ -cve: +cve: ~ branches: master: time: 2011-09-07 12:00 diff --git a/typo3-ter/tipafriend/2010-04-14.yaml b/typo3-ter/tipafriend/2010-04-14.yaml index 5f40450ff..fbcc157c1 100644 --- a/typo3-ter/tipafriend/2010-04-14.yaml +++ b/typo3-ter/tipafriend/2010-04-14.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2010-010: Vulnerabilitiy in extension Tip-A-Friend (tipafriend)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-010/ -cve: +cve: ~ branches: master: time: 2010-04-14 12:00 diff --git a/typo3-ter/tt-news/2014-02-12.yaml b/typo3-ter/tt-news/2014-02-12.yaml index d4d7d81bb..87d7d9ccc 100644 --- a/typo3-ter/tt-news/2014-02-12.yaml +++ b/typo3-ter/tt-news/2014-02-12.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-003: Insecure Unserialize in extension News (tt_news)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-003/ -cve: +cve: ~ branches: master: time: 2014-02-12 12:00 diff --git a/typo3-ter/ve-guestbook/2009-06-16.yaml b/typo3-ter/ve-guestbook/2009-06-16.yaml index 2f668f25e..bb32bd9c8 100644 --- a/typo3-ter/ve-guestbook/2009-06-16.yaml +++ b/typo3-ter/ve-guestbook/2009-06-16.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2009-009: Cross-Site Scripting vulnerability in extension Modern Guestbook / Commenting System (ve_guestbook)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-009/ -cve: +cve: ~ branches: master: time: 2009-06-16 12:00 diff --git a/typo3-ter/webdav/2014-11-27.yaml b/typo3-ter/webdav/2014-11-27.yaml index 3ca8563d8..23f302a03 100644 --- a/typo3-ter/webdav/2014-11-27.yaml +++ b/typo3-ter/webdav/2014-11-27.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-017: Improper Access Control in WebDav for filemounts (webdav)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-017/ -cve: +cve: ~ branches: master: time: 2014-11-27 12:00 diff --git a/typo3-ter/wec-discussion/2008-07-01.yaml b/typo3-ter/wec-discussion/2008-07-01.yaml index 05fa29b32..32937b8b3 100644 --- a/typo3-ter/wec-discussion/2008-07-01.yaml +++ b/typo3-ter/wec-discussion/2008-07-01.yaml @@ -1,6 +1,6 @@ title: "TYPO3-20080701-4: Multiple vulnerabilities in extension WEC Discussion Forum (wec_discussion)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-4/ -cve: +cve: ~ branches: master: time: 2008-07-01 12:00 diff --git a/typo3-ter/wec-discussion/2011-04-07.yaml b/typo3-ter/wec-discussion/2011-04-07.yaml index 2fbd554e4..ba07edcc9 100644 --- a/typo3-ter/wec-discussion/2011-04-07.yaml +++ b/typo3-ter/wec-discussion/2011-04-07.yaml @@ -1,6 +1,6 @@ title: "TYPO3-SA-2011-003: SQL Injection vulnerabilities in extension 'WEC Discussion Forum' (wec_discussion)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-003/ -cve: +cve: ~ branches: master: time: 2011-04-07 12:00 diff --git a/typo3-ter/wf-gallery/2014-12-15.yaml b/typo3-ter/wf-gallery/2014-12-15.yaml index 171311c56..71b856101 100644 --- a/typo3-ter/wf-gallery/2014-12-15.yaml +++ b/typo3-ter/wf-gallery/2014-12-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-021: Cross-Site Scripting vulnerability in wfGallery (wf_gallery)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-021/ -cve: +cve: ~ branches: master: time: 2014-12-15 12:00 diff --git a/typo3-ter/wt-directory/2015-06-15.yaml b/typo3-ter/wt-directory/2015-06-15.yaml index 30735bad4..8f5219bd4 100644 --- a/typo3-ter/wt-directory/2015-06-15.yaml +++ b/typo3-ter/wt-directory/2015-06-15.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-008: SQL Injection vulnerability in extension wt_directory (wt_directory)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-008/ -cve: +cve: ~ branches: master: time: 2015-06-15 12:00 diff --git a/typo3-ter/yag/2014-02-12.yaml b/typo3-ter/yag/2014-02-12.yaml index 188b1b37a..f8c2001a0 100644 --- a/typo3-ter/yag/2014-02-12.yaml +++ b/typo3-ter/yag/2014-02-12.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ -cve: +cve: ~ branches: master: time: 2014-02-12 12:00 diff --git a/typo3-ter/zend-framework/2015-09-30.yaml b/typo3-ter/zend-framework/2015-09-30.yaml index aea447746..bd116dbf3 100644 --- a/typo3-ter/zend-framework/2015-09-30.yaml +++ b/typo3-ter/zend-framework/2015-09-30.yaml @@ -1,6 +1,6 @@ title: "TYPO3-EXT-SA-2015-019: File Disclosure in extension 'Zend Framework Integration' (zend_framework)" link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-019/ -cve: +cve: ~ branches: master: time: 2015-09-30 12:00 From 9c3334a36acbf9f763bdda0582950fc9cd0d14a6 Mon Sep 17 00:00:00 2001 From: Roland Waldner Date: Mon, 30 Nov 2015 22:31:43 +0100 Subject: [PATCH 3/3] [TASK] Add "composer-repository" data Details: https://github.com/FriendsOfPHP/security-advisories/pull/128/ --- typo3-ter/air-filemanager/2008-05-15.yaml | 9 +++++---- typo3-ter/ameos-dragndropupload/2011-09-07.yaml | 9 +++++---- typo3-ter/ameos-dragndropupload/2014-12-15.yaml | 9 +++++---- typo3-ter/ameos-formidable/2012-06-07.yaml | 9 +++++---- typo3-ter/beko-beuserlog/2015-06-15.yaml | 9 +++++---- typo3-ter/cal/2009-12-01.yaml | 9 +++++---- typo3-ter/cal/2010-03-02.yaml | 9 +++++---- typo3-ter/cc-awstats/2013-09-25.yaml | 9 +++++---- typo3-ter/commerce/2008-10-20.yaml | 9 +++++---- typo3-ter/commerce/2009-08-18.yaml | 9 +++++---- typo3-ter/commerce/2012-12-21.yaml | 9 +++++---- typo3-ter/content-rating-extbase/2015-01-09.yaml | 9 +++++---- typo3-ter/content-rating/2015-01-09.yaml | 9 +++++---- typo3-ter/cooluri/2013-02-19.yaml | 9 +++++---- typo3-ter/dam/2011-01-26.yaml | 9 +++++---- typo3-ter/dce/2014-10-17.yaml | 9 +++++---- typo3-ter/devlog/2015-06-15.yaml | 9 +++++---- typo3-ter/direct-mail-subscription/2011-09-07.yaml | 9 +++++---- typo3-ter/direct-mail-subscription/2014-02-12.yaml | 9 +++++---- typo3-ter/direct-mail-subscription/2015-01-16.yaml | 9 +++++---- typo3-ter/direct-mail/2009-12-01.yaml | 9 +++++---- typo3-ter/direct-mail/2011-03-15.yaml | 9 +++++---- typo3-ter/direct-mail/2013-09-25.yaml | 9 +++++---- typo3-ter/dmmjobcontrol/2014-09-25.yaml | 9 +++++---- typo3-ter/error-404-handling/2010-04-14.yaml | 9 +++++---- typo3-ter/eu-ldap/2015-09-30.yaml | 9 +++++---- typo3-ter/fal-sftp/2014-10-17.yaml | 9 +++++---- typo3-ter/feupload/2015-06-15.yaml | 9 +++++---- typo3-ter/formhandler/2011-08-25.yaml | 9 +++++---- typo3-ter/formhandler/2012-10-25.yaml | 9 +++++---- typo3-ter/formhandler/2013-08-05.yaml | 9 +++++---- typo3-ter/formhandler/2013-09-25.yaml | 9 +++++---- typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml | 9 +++++---- typo3-ter/jm-gallery/2011-08-03.yaml | 9 +++++---- typo3-ter/jobfair/2015-06-15.yaml | 9 +++++---- typo3-ter/js-faq/2015-06-15.yaml | 9 +++++---- typo3-ter/ke-search/2011-06-29.yaml | 9 +++++---- typo3-ter/ke-stats/2008-05-13.yaml | 9 +++++---- typo3-ter/kj-imagelightbox2/2008-05-27.yaml | 9 +++++---- typo3-ter/locator/2015-06-15.yaml | 9 +++++---- typo3-ter/mh-httpbl/2015-09-30.yaml | 9 +++++---- typo3-ter/mkforms/2015-09-30.yaml | 9 +++++---- typo3-ter/mm-forum/2010-03-16.yaml | 9 +++++---- typo3-ter/mm-forum/2014-02-12.yaml | 9 +++++---- typo3-ter/multishop/2013-06-03.yaml | 9 +++++---- typo3-ter/ncgov-smoelenboek/2015-06-15.yaml | 9 +++++---- typo3-ter/news/2015-09-30.yaml | 9 +++++---- typo3-ter/pagenotfoundhandling/2015-06-29.yaml | 9 +++++---- typo3-ter/pbsurvey/2008-05-13.yaml | 9 +++++---- typo3-ter/pbsurvey/2011-08-25.yaml | 9 +++++---- typo3-ter/phpmyadmin/2009-01-23.yaml | 9 +++++---- typo3-ter/phpmyadmin/2011-05-23.yaml | 9 +++++---- typo3-ter/phpmyadmin/2011-07-06.yaml | 9 +++++---- typo3-ter/phpmyadmin/2011-07-25.yaml | 9 +++++---- typo3-ter/phpmyadmin/2011-08-26.yaml | 9 +++++---- typo3-ter/phpmyadmin/2011-09-15.yaml | 9 +++++---- typo3-ter/phpmyadmin/2011-10-18.yaml | 9 +++++---- typo3-ter/phpmyadmin/2011-11-15.yaml | 9 +++++---- typo3-ter/phpmyadmin/2014-09-26.yaml | 9 +++++---- typo3-ter/phpmyadmin/2014-11-05.yaml | 9 +++++---- typo3-ter/phpmyadmin/2014-12-08.yaml | 9 +++++---- typo3-ter/powermail/2011-05-11.yaml | 9 +++++---- typo3-ter/powermail/2012-03-28.yaml | 9 +++++---- typo3-ter/powermail/2012-06-07.yaml | 9 +++++---- typo3-ter/powermail/2014-04-10.yaml | 9 +++++---- typo3-ter/pt-extbase/2014-02-12.yaml | 9 +++++---- typo3-ter/realurl/2013-09-25.yaml | 9 +++++---- typo3-ter/rgsmoothgallery/2011-09-07.yaml | 9 +++++---- typo3-ter/rlmp-eventdb/2008-05-13.yaml | 9 +++++---- typo3-ter/sb-akronymmanager/2015-06-18.yaml | 9 +++++---- typo3-ter/seminars/2012-07-03.yaml | 9 +++++---- typo3-ter/seo-basics/2012-03-28.yaml | 9 +++++---- typo3-ter/seo-basics/2012-06-07.yaml | 9 +++++---- typo3-ter/sg-zfelib/2008-05-27.yaml | 9 +++++---- typo3-ter/si-bibtex/2014-12-15.yaml | 9 +++++---- typo3-ter/solr/2013-09-25.yaml | 9 +++++---- typo3-ter/sr-feuser-register/2010-04-14.yaml | 9 +++++---- typo3-ter/sr-feuser-register/2010-07-28.yaml | 9 +++++---- typo3-ter/sr-feuser-register/2012-02-23.yaml | 9 +++++---- typo3-ter/sr-feuser-register/2013-08-05.yaml | 9 +++++---- typo3-ter/sr-sendcard/2008-07-01.yaml | 9 +++++---- typo3-ter/static-info-tables/2013-02-19.yaml | 9 +++++---- typo3-ter/t3adminer/2015-09-30.yaml | 9 +++++---- typo3-ter/t3blog/2010-02-01.yaml | 9 +++++---- typo3-ter/t3blog/2011-09-27.yaml | 9 +++++---- typo3-ter/t3m/2009-08-18.yaml | 9 +++++---- typo3-ter/t3quixplorer/2015-09-30.yaml | 9 +++++---- typo3-ter/th-mailformplus/2008-05-05.yaml | 9 +++++---- typo3-ter/th-mailformplus/2011-09-07.yaml | 9 +++++---- typo3-ter/tipafriend/2010-04-14.yaml | 9 +++++---- typo3-ter/tt-news/2014-02-12.yaml | 9 +++++---- typo3-ter/ve-guestbook/2009-06-16.yaml | 9 +++++---- typo3-ter/webdav/2014-11-27.yaml | 9 +++++---- typo3-ter/wec-discussion/2008-07-01.yaml | 9 +++++---- typo3-ter/wec-discussion/2011-04-07.yaml | 9 +++++---- typo3-ter/wf-gallery/2014-12-15.yaml | 9 +++++---- typo3-ter/wt-directory/2015-06-15.yaml | 9 +++++---- typo3-ter/yag/2014-02-12.yaml | 9 +++++---- typo3-ter/zend-framework/2015-09-30.yaml | 9 +++++---- 99 files changed, 495 insertions(+), 396 deletions(-) diff --git a/typo3-ter/air-filemanager/2008-05-15.yaml b/typo3-ter/air-filemanager/2008-05-15.yaml index b51fdc7e1..af85e3672 100644 --- a/typo3-ter/air-filemanager/2008-05-15.yaml +++ b/typo3-ter/air-filemanager/2008-05-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080515-2: Multiple vulnerabilities in extension Frontend Filemanager (air_filemanager)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080515-2/ -cve: ~ +title: "TYPO3-20080515-2: Multiple vulnerabilities in extension Frontend Filemanager (air_filemanager)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080515-2/ +cve: ~ branches: master: time: 2008-05-15 12:00 versions: [<=0.6.0] -reference: composer://typo3-ter/air-filemanager +reference: composer://typo3-ter/air-filemanager +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ameos-dragndropupload/2011-09-07.yaml b/typo3-ter/ameos-dragndropupload/2011-09-07.yaml index dffe2133a..4adfa9cdf 100644 --- a/typo3-ter/ameos-dragndropupload/2011-09-07.yaml +++ b/typo3-ter/ameos-dragndropupload/2011-09-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-010: A vulnerability in extension Drag Drop Mass Upload (ameos_dragndropupload)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-010/ -cve: ~ +title: "TYPO3-EXT-SA-2011-010: A vulnerability in extension Drag Drop Mass Upload (ameos_dragndropupload)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-010/ +cve: ~ branches: master: time: 2011-09-07 12:00 versions: [<=2.0.2] -reference: composer://typo3-ter/ameos-dragndropupload +reference: composer://typo3-ter/ameos-dragndropupload +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ameos-dragndropupload/2014-12-15.yaml b/typo3-ter/ameos-dragndropupload/2014-12-15.yaml index 8e255f3b2..473e8d97f 100644 --- a/typo3-ter/ameos-dragndropupload/2014-12-15.yaml +++ b/typo3-ter/ameos-dragndropupload/2014-12-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-019: Multiple vulnerabilities in Drag Drop Mass Upload (ameos_dragndropupload)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-019/ -cve: ~ +title: "TYPO3-EXT-SA-2014-019: Multiple vulnerabilities in Drag Drop Mass Upload (ameos_dragndropupload)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-019/ +cve: ~ branches: master: time: 2014-12-15 12:00 versions: [<=3.1.1] -reference: composer://typo3-ter/ameos-dragndropupload +reference: composer://typo3-ter/ameos-dragndropupload +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ameos-formidable/2012-06-07.yaml b/typo3-ter/ameos-formidable/2012-06-07.yaml index d6a40b9c7..4af0358f7 100644 --- a/typo3-ter/ameos-formidable/2012-06-07.yaml +++ b/typo3-ter/ameos-formidable/2012-06-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-008: Cross-site scripting vulnerability in extension Ameos Formidable (ameos_formidable)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-008/ -cve: ~ +title: "TYPO3-EXT-SA-2012-008: Cross-site scripting vulnerability in extension Ameos Formidable (ameos_formidable)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-008/ +cve: ~ branches: master: time: 2012-06-07 12:00 versions: [<=1.1.373] -reference: composer://typo3-ter/ameos-formidable +reference: composer://typo3-ter/ameos-formidable +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/beko-beuserlog/2015-06-15.yaml b/typo3-ter/beko-beuserlog/2015-06-15.yaml index 52bc9684c..08c632ba4 100644 --- a/typo3-ter/beko-beuserlog/2015-06-15.yaml +++ b/typo3-ter/beko-beuserlog/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-007: Cross-Site Scripting in extension BE User Log (beko_beuserlog)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-007/ -cve: ~ +title: "TYPO3-EXT-SA-2015-007: Cross-Site Scripting in extension BE User Log (beko_beuserlog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-007/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=1.1.1] -reference: composer://typo3-ter/beko-beuserlog +reference: composer://typo3-ter/beko-beuserlog +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/cal/2009-12-01.yaml b/typo3-ter/cal/2009-12-01.yaml index 93f73eaf8..0c49d7872 100644 --- a/typo3-ter/cal/2009-12-01.yaml +++ b/typo3-ter/cal/2009-12-01.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2009-019: Blind SQL Injection vulnerability in extension Calendar Base (cal)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-019/ -cve: ~ +title: "TYPO3-SA-2009-019: Blind SQL Injection vulnerability in extension Calendar Base (cal)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-019/ +cve: ~ branches: master: time: 2009-12-01 12:00 versions: [<=1.2.0] -reference: composer://typo3-ter/cal +reference: composer://typo3-ter/cal +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/cal/2010-03-02.yaml b/typo3-ter/cal/2010-03-02.yaml index 873a9ca8a..fa1e103ca 100644 --- a/typo3-ter/cal/2010-03-02.yaml +++ b/typo3-ter/cal/2010-03-02.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2010-005: Blind SQL Injection vulnerability in extension Calendar Base (cal)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-005/ -cve: ~ +title: "TYPO3-SA-2010-005: Blind SQL Injection vulnerability in extension Calendar Base (cal)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-005/ +cve: ~ branches: master: time: 2010-03-02 12:00 versions: [<=1.3.1] -reference: composer://typo3-ter/cal +reference: composer://typo3-ter/cal +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/cc-awstats/2013-09-25.yaml b/typo3-ter/cc-awstats/2013-09-25.yaml index 00bff05ed..2b781701d 100644 --- a/typo3-ter/cc-awstats/2013-09-25.yaml +++ b/typo3-ter/cc-awstats/2013-09-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-018: Several vulnerabilities in extension AWStats (cc_awstats)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-018/ -cve: ~ +title: "TYPO3-EXT-SA-2013-018: Several vulnerabilities in extension AWStats (cc_awstats)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-018/ +cve: ~ branches: master: time: 2013-09-25 12:00 versions: [<=0.10.0] -reference: composer://typo3-ter/cc-awstats +reference: composer://typo3-ter/cc-awstats +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/commerce/2008-10-20.yaml b/typo3-ter/commerce/2008-10-20.yaml index 57eda4805..1d02f5f52 100644 --- a/typo3-ter/commerce/2008-10-20.yaml +++ b/typo3-ter/commerce/2008-10-20.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20081020-2: SQL Injection in extension Commerce (commerce)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20081020-2/ -cve: ~ +title: "TYPO3-20081020-2: SQL Injection in extension Commerce (commerce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20081020-2/ +cve: ~ branches: master: time: 2008-10-20 12:00 versions: [<=0.9.6] -reference: composer://typo3-ter/commerce +reference: composer://typo3-ter/commerce +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/commerce/2009-08-18.yaml b/typo3-ter/commerce/2009-08-18.yaml index 9bc3d3c64..dbc7a693b 100644 --- a/typo3-ter/commerce/2009-08-18.yaml +++ b/typo3-ter/commerce/2009-08-18.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2009-011: Cross-Site Scripting vulnerability in extension Commerce (commerce)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-011/ -cve: ~ +title: "TYPO3-SA-2009-011: Cross-Site Scripting vulnerability in extension Commerce (commerce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-011/ +cve: ~ branches: master: time: 2009-08-18 12:00 versions: [<=0.9.8] -reference: composer://typo3-ter/commerce +reference: composer://typo3-ter/commerce +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/commerce/2012-12-21.yaml b/typo3-ter/commerce/2012-12-21.yaml index 46449f486..ba5958abb 100644 --- a/typo3-ter/commerce/2012-12-21.yaml +++ b/typo3-ter/commerce/2012-12-21.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-013: Several Vulnerabilities in extension commerce (commerce)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-013/ -cve: ~ +title: "TYPO3-EXT-SA-2012-013: Several Vulnerabilities in extension commerce (commerce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-013/ +cve: ~ branches: master: time: 2012-12-21 12:00 versions: [<=0.12.7] -reference: composer://typo3-ter/commerce +reference: composer://typo3-ter/commerce +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/content-rating-extbase/2015-01-09.yaml b/typo3-ter/content-rating-extbase/2015-01-09.yaml index cb0fa9831..9e87eb231 100644 --- a/typo3-ter/content-rating-extbase/2015-01-09.yaml +++ b/typo3-ter/content-rating-extbase/2015-01-09.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-003: Multiple vulnerabilities in Content Rating Extbase (content_rating_extbase)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-003/ -cve: ~ +title: "TYPO3-EXT-SA-2015-003: Multiple vulnerabilities in Content Rating Extbase (content_rating_extbase)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-003/ +cve: ~ branches: master: time: 2015-01-09 12:00 versions: [<=2.0.3] -reference: composer://typo3-ter/content-rating-extbase +reference: composer://typo3-ter/content-rating-extbase +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/content-rating/2015-01-09.yaml b/typo3-ter/content-rating/2015-01-09.yaml index 8116edebf..69042741c 100644 --- a/typo3-ter/content-rating/2015-01-09.yaml +++ b/typo3-ter/content-rating/2015-01-09.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-002: Multiple vulnerabilities in Content Rating (content_rating)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-002/ -cve: ~ +title: "TYPO3-EXT-SA-2015-002: Multiple vulnerabilities in Content Rating (content_rating)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-002/ +cve: ~ branches: master: time: 2015-01-09 12:00 versions: [<=1.0.3] -reference: composer://typo3-ter/content-rating +reference: composer://typo3-ter/content-rating +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/cooluri/2013-02-19.yaml b/typo3-ter/cooluri/2013-02-19.yaml index 2af8a3230..94fa036a6 100644 --- a/typo3-ter/cooluri/2013-02-19.yaml +++ b/typo3-ter/cooluri/2013-02-19.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-003: SQL Injection vulnerability in extension CoolURI (cooluri)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-003/ -cve: ~ +title: "TYPO3-EXT-SA-2013-003: SQL Injection vulnerability in extension CoolURI (cooluri)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-003/ +cve: ~ branches: master: time: 2013-02-19 12:00 versions: [<=1.0.29] -reference: composer://typo3-ter/cooluri +reference: composer://typo3-ter/cooluri +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/dam/2011-01-26.yaml b/typo3-ter/dam/2011-01-26.yaml index 2c1306c77..e718fbec1 100644 --- a/typo3-ter/dam/2011-01-26.yaml +++ b/typo3-ter/dam/2011-01-26.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2011-001: Cross-Site Scripting vulnerability in extension 'Media [DAM]' (dam)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-001/ -cve: ~ +title: "TYPO3-SA-2011-001: Cross-Site Scripting vulnerability in extension 'Media [DAM]' (dam)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-001/ +cve: ~ branches: master: time: 2011-01-26 12:00 versions: [<=1.1.7] -reference: composer://typo3-ter/dam +reference: composer://typo3-ter/dam +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/dce/2014-10-17.yaml b/typo3-ter/dce/2014-10-17.yaml index 83dd00d74..2ef664560 100644 --- a/typo3-ter/dce/2014-10-17.yaml +++ b/typo3-ter/dce/2014-10-17.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-015: Information Disclosure vulnerability in Dynamic Content Elements (dce)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-015/ -cve: ~ +title: "TYPO3-EXT-SA-2014-015: Information Disclosure vulnerability in Dynamic Content Elements (dce)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-015/ +cve: ~ branches: master: time: 2014-10-17 12:00 versions: [>=0.7.0,<=0.11.4] -reference: composer://typo3-ter/dce +reference: composer://typo3-ter/dce +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/devlog/2015-06-15.yaml b/typo3-ter/devlog/2015-06-15.yaml index 2399b8f03..5e203212b 100644 --- a/typo3-ter/devlog/2015-06-15.yaml +++ b/typo3-ter/devlog/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-011: SQL Injection vulnerability in extension Developer Log (devlog)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-011/ -cve: ~ +title: "TYPO3-EXT-SA-2015-011: SQL Injection vulnerability in extension Developer Log (devlog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-011/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=2.11.3] -reference: composer://typo3-ter/devlog +reference: composer://typo3-ter/devlog +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/direct-mail-subscription/2011-09-07.yaml b/typo3-ter/direct-mail-subscription/2011-09-07.yaml index f6f0e2fea..e52ba41bb 100644 --- a/typo3-ter/direct-mail-subscription/2011-09-07.yaml +++ b/typo3-ter/direct-mail-subscription/2011-09-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-007: Several Vulnerabilities in extension Direct Mail Subscription (direct_mail_subscription)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-007/ -cve: ~ +title: "TYPO3-EXT-SA-2011-007: Several Vulnerabilities in extension Direct Mail Subscription (direct_mail_subscription)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-007/ +cve: ~ branches: master: time: 2011-09-07 12:00 versions: [<=1.1.0] -reference: composer://typo3-ter/direct-mail-subscription +reference: composer://typo3-ter/direct-mail-subscription +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/direct-mail-subscription/2014-02-12.yaml b/typo3-ter/direct-mail-subscription/2014-02-12.yaml index ed07a94ae..dc83685f0 100644 --- a/typo3-ter/direct-mail-subscription/2014-02-12.yaml +++ b/typo3-ter/direct-mail-subscription/2014-02-12.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-004: Mass Assignment in extension Direct Mail Subscription (direct_mail_subscription)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-004/ -cve: ~ +title: "TYPO3-EXT-SA-2014-004: Mass Assignment in extension Direct Mail Subscription (direct_mail_subscription)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-004/ +cve: ~ branches: master: time: 2014-02-12 12:00 versions: [<=2.0.0] -reference: composer://typo3-ter/direct-mail-subscription +reference: composer://typo3-ter/direct-mail-subscription +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/direct-mail-subscription/2015-01-16.yaml b/typo3-ter/direct-mail-subscription/2015-01-16.yaml index 107a25b8f..ffc67f8d9 100644 --- a/typo3-ter/direct-mail-subscription/2015-01-16.yaml +++ b/typo3-ter/direct-mail-subscription/2015-01-16.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-004: Information Disclosure in Direct Mail Subscription (direct_mail_subscription)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-004/ -cve: ~ +title: "TYPO3-EXT-SA-2015-004: Information Disclosure in Direct Mail Subscription (direct_mail_subscription)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-004/ +cve: ~ branches: master: time: 2015-01-16 12:00 versions: [>=2.0.1,<=2.0.1] -reference: composer://typo3-ter/direct-mail-subscription +reference: composer://typo3-ter/direct-mail-subscription +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/direct-mail/2009-12-01.yaml b/typo3-ter/direct-mail/2009-12-01.yaml index 12cd04884..59d306065 100644 --- a/typo3-ter/direct-mail/2009-12-01.yaml +++ b/typo3-ter/direct-mail/2009-12-01.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2009-018: Cross-Site Scripting vulnerability in extension Direct Mail (direct_mail)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-018/ -cve: ~ +title: "TYPO3-SA-2009-018: Cross-Site Scripting vulnerability in extension Direct Mail (direct_mail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-018/ +cve: ~ branches: master: time: 2009-12-01 12:00 versions: [<=2.6.4] -reference: composer://typo3-ter/direct-mail +reference: composer://typo3-ter/direct-mail +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/direct-mail/2011-03-15.yaml b/typo3-ter/direct-mail/2011-03-15.yaml index 18ae453ed..5596f7d94 100644 --- a/typo3-ter/direct-mail/2011-03-15.yaml +++ b/typo3-ter/direct-mail/2011-03-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2011-002: XSS and SQL Injection vulnerabilities in extension 'Direct Mail' (direct_mail)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-002/ -cve: ~ +title: "TYPO3-SA-2011-002: XSS and SQL Injection vulnerabilities in extension 'Direct Mail' (direct_mail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-002/ +cve: ~ branches: master: time: 2011-03-15 12:00 versions: [<=2.6.9] -reference: composer://typo3-ter/direct-mail +reference: composer://typo3-ter/direct-mail +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/direct-mail/2013-09-25.yaml b/typo3-ter/direct-mail/2013-09-25.yaml index 8b59000bf..c55eceea4 100644 --- a/typo3-ter/direct-mail/2013-09-25.yaml +++ b/typo3-ter/direct-mail/2013-09-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-014: Information Disclosure in extension Direct Mail (direct_mail)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-014/ -cve: ~ +title: "TYPO3-EXT-SA-2013-014: Information Disclosure in extension Direct Mail (direct_mail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-014/ +cve: ~ branches: master: time: 2013-09-25 12:00 versions: [<=3.1.1] -reference: composer://typo3-ter/direct-mail +reference: composer://typo3-ter/direct-mail +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/dmmjobcontrol/2014-09-25.yaml b/typo3-ter/dmmjobcontrol/2014-09-25.yaml index 8ef00e1c6..26311ea94 100644 --- a/typo3-ter/dmmjobcontrol/2014-09-25.yaml +++ b/typo3-ter/dmmjobcontrol/2014-09-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-012: Several vulnerabilities in extension JobControl (dmmjobcontrol)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-012/ -cve: ~ +title: "TYPO3-EXT-SA-2014-012: Several vulnerabilities in extension JobControl (dmmjobcontrol)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-012/ +cve: ~ branches: master: time: 2014-09-25 12:00 versions: [<=2.14.0] -reference: composer://typo3-ter/dmmjobcontrol +reference: composer://typo3-ter/dmmjobcontrol +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/error-404-handling/2010-04-14.yaml b/typo3-ter/error-404-handling/2010-04-14.yaml index d75d187f9..19d3ea89d 100644 --- a/typo3-ter/error-404-handling/2010-04-14.yaml +++ b/typo3-ter/error-404-handling/2010-04-14.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2010-011: Vulnerabilitiy in extension 404 Error Page Handling (error_404_handling)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-011/ -cve: ~ +title: "TYPO3-SA-2010-011: Vulnerabilitiy in extension 404 Error Page Handling (error_404_handling)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-011/ +cve: ~ branches: master: time: 2010-04-14 12:00 versions: [<=0.1.1] -reference: composer://typo3-ter/error-404-handling +reference: composer://typo3-ter/error-404-handling +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/eu-ldap/2015-09-30.yaml b/typo3-ter/eu-ldap/2015-09-30.yaml index 620d74a5d..1777a61e6 100644 --- a/typo3-ter/eu-ldap/2015-09-30.yaml +++ b/typo3-ter/eu-ldap/2015-09-30.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-016: Information Disclosure in extension 'LDAP' (eu_ldap)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-016/ -cve: ~ +title: "TYPO3-EXT-SA-2015-016: Information Disclosure in extension 'LDAP' (eu_ldap)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-016/ +cve: ~ branches: master: time: 2015-09-30 12:00 versions: [<=2.8.18] -reference: composer://typo3-ter/eu-ldap +reference: composer://typo3-ter/eu-ldap +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/fal-sftp/2014-10-17.yaml b/typo3-ter/fal-sftp/2014-10-17.yaml index 0833a7663..073958a3c 100644 --- a/typo3-ter/fal-sftp/2014-10-17.yaml +++ b/typo3-ter/fal-sftp/2014-10-17.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-014: Improper Access Control vulnerability in extension fal_sftp (fal_sftp)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-014/ -cve: ~ +title: "TYPO3-EXT-SA-2014-014: Improper Access Control vulnerability in extension fal_sftp (fal_sftp)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-014/ +cve: ~ branches: master: time: 2014-10-17 12:00 versions: [>=0.2.4, <=0.2.5] -reference: composer://typo3-ter/fal-sftp +reference: composer://typo3-ter/fal-sftp +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/feupload/2015-06-15.yaml b/typo3-ter/feupload/2015-06-15.yaml index 87ef3c4f3..3cd257ead 100644 --- a/typo3-ter/feupload/2015-06-15.yaml +++ b/typo3-ter/feupload/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-006: Arbitrary Code Execution in extension Frontend User Upload (feupload)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-006/ -cve: ~ +title: "TYPO3-EXT-SA-2015-006: Arbitrary Code Execution in extension Frontend User Upload (feupload)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-006/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=0.5.0] -reference: composer://typo3-ter/feupload +reference: composer://typo3-ter/feupload +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/formhandler/2011-08-25.yaml b/typo3-ter/formhandler/2011-08-25.yaml index 435715aa7..a4e5a3a51 100644 --- a/typo3-ter/formhandler/2011-08-25.yaml +++ b/typo3-ter/formhandler/2011-08-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-003: Several Vulnerabilities in extension Formhandler (formhandler)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-003/ -cve: ~ +title: "TYPO3-EXT-SA-2011-003: Several Vulnerabilities in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-003/ +cve: ~ branches: master: time: 2011-08-25 12:00 versions: [<=0.9.14] -reference: composer://typo3-ter/formhandler +reference: composer://typo3-ter/formhandler +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/formhandler/2012-10-25.yaml b/typo3-ter/formhandler/2012-10-25.yaml index 9d244cd1c..e8096158b 100644 --- a/typo3-ter/formhandler/2012-10-25.yaml +++ b/typo3-ter/formhandler/2012-10-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-012: Several Vulnerabilities in extension Formhandler (formhandler)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-012/ -cve: ~ +title: "TYPO3-EXT-SA-2012-012: Several Vulnerabilities in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-012/ +cve: ~ branches: master: time: 2012-10-25 12:00 versions: [<=1.4.0] -reference: composer://typo3-ter/formhandler +reference: composer://typo3-ter/formhandler +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/formhandler/2013-08-05.yaml b/typo3-ter/formhandler/2013-08-05.yaml index dde94d791..58cb7eff2 100644 --- a/typo3-ter/formhandler/2013-08-05.yaml +++ b/typo3-ter/formhandler/2013-08-05.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-012: Several vulnerabilities in extension Formhandler (formhandler)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-012/ -cve: ~ +title: "TYPO3-EXT-SA-2013-012: Several vulnerabilities in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-012/ +cve: ~ branches: master: time: 2013-08-05 12:00 versions: [<=1.6.0] -reference: composer://typo3-ter/formhandler +reference: composer://typo3-ter/formhandler +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/formhandler/2013-09-25.yaml b/typo3-ter/formhandler/2013-09-25.yaml index 1c551c6b4..d88797a3d 100644 --- a/typo3-ter/formhandler/2013-09-25.yaml +++ b/typo3-ter/formhandler/2013-09-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-016: SQL Injection vulnerability in extension Formhandler (formhandler)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-016/ -cve: ~ +title: "TYPO3-EXT-SA-2013-016: SQL Injection vulnerability in extension Formhandler (formhandler)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-016/ +cve: ~ branches: master: time: 2013-09-25 12:00 versions: [<=1.6.1] -reference: composer://typo3-ter/formhandler +reference: composer://typo3-ter/formhandler +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml b/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml index bd6c8b14b..1f8d8d607 100644 --- a/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml +++ b/typo3-ter/ig-ldap-sso-auth/2015-01-08.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-001: Improper Authentication in LDAP / SSO Authentication (ig_ldap_sso_auth)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-001/ -cve: ~ +title: "TYPO3-EXT-SA-2015-001: Improper Authentication in LDAP / SSO Authentication (ig_ldap_sso_auth)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-001/ +cve: ~ branches: master: time: 2015-01-08 12:00 versions: [>=2.0.0,<=2.0.0] -reference: composer://typo3-ter/ig-ldap-sso-auth +reference: composer://typo3-ter/ig-ldap-sso-auth +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/jm-gallery/2011-08-03.yaml b/typo3-ter/jm-gallery/2011-08-03.yaml index ce9ae2d82..0e1bd4ba6 100644 --- a/typo3-ter/jm-gallery/2011-08-03.yaml +++ b/typo3-ter/jm-gallery/2011-08-03.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-002: Multiple SQL Injection vulnerabilities in extension 'Website Photo Gallery' (jm_gallery)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-002/ -cve: ~ +title: "TYPO3-EXT-SA-2011-002: Multiple SQL Injection vulnerabilities in extension 'Website Photo Gallery' (jm_gallery)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-002/ +cve: ~ branches: master: time: 2011-08-03 12:00 versions: [<=0.9.1] -reference: composer://typo3-ter/jm-gallery +reference: composer://typo3-ter/jm-gallery +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/jobfair/2015-06-15.yaml b/typo3-ter/jobfair/2015-06-15.yaml index 14a6b1b65..52fa94a8b 100644 --- a/typo3-ter/jobfair/2015-06-15.yaml +++ b/typo3-ter/jobfair/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-013: Arbitrary Code Execution in extension Job Fair (jobfair)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-013/ -cve: ~ +title: "TYPO3-EXT-SA-2015-013: Arbitrary Code Execution in extension Job Fair (jobfair)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-013/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=1.0.0] -reference: composer://typo3-ter/jobfair +reference: composer://typo3-ter/jobfair +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/js-faq/2015-06-15.yaml b/typo3-ter/js-faq/2015-06-15.yaml index d56895551..5657807aa 100644 --- a/typo3-ter/js-faq/2015-06-15.yaml +++ b/typo3-ter/js-faq/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-012: SQL Injection vulnerability in extension FAQ - Frequently Asked Questions (js_faq)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-012/ -cve: ~ +title: "TYPO3-EXT-SA-2015-012: SQL Injection vulnerability in extension FAQ - Frequently Asked Questions (js_faq)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-012/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=1.2.0] -reference: composer://typo3-ter/js-faq +reference: composer://typo3-ter/js-faq +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ke-search/2011-06-29.yaml b/typo3-ter/ke-search/2011-06-29.yaml index b8ddbefac..3d23ac459 100644 --- a/typo3-ter/ke-search/2011-06-29.yaml +++ b/typo3-ter/ke-search/2011-06-29.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2011-007: SQL Injection vulnerability in extension Faceted Search (ke_search)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-007/ -cve: ~ +title: "TYPO3-SA-2011-007: SQL Injection vulnerability in extension Faceted Search (ke_search)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-007/ +cve: ~ branches: master: time: 2011-06-29 12:00 versions: [<=0.3.0] -reference: composer://typo3-ter/ke-search +reference: composer://typo3-ter/ke-search +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ke-stats/2008-05-13.yaml b/typo3-ter/ke-stats/2008-05-13.yaml index 1a907e10d..cf84fae7b 100644 --- a/typo3-ter/ke-stats/2008-05-13.yaml +++ b/typo3-ter/ke-stats/2008-05-13.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080513-4: Multiple vulnerabilities in extension Statistics (ke_stats)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-4/ -cve: ~ +title: "TYPO3-20080513-4: Multiple vulnerabilities in extension Statistics (ke_stats)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-4/ +cve: ~ branches: master: time: 2008-05-13 12:00 versions: [<=0.1.2] -reference: composer://typo3-ter/ke-stats +reference: composer://typo3-ter/ke-stats +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/kj-imagelightbox2/2008-05-27.yaml b/typo3-ter/kj-imagelightbox2/2008-05-27.yaml index 06cba7eef..11de1d557 100644 --- a/typo3-ter/kj-imagelightbox2/2008-05-27.yaml +++ b/typo3-ter/kj-imagelightbox2/2008-05-27.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080527-1: Cross Site Scripting vulnerability in extension 'KJ: Image Lightbox v2' (kj_imagelightbox2)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-1/ -cve: ~ +title: "TYPO3-20080527-1: Cross Site Scripting vulnerability in extension 'KJ: Image Lightbox v2' (kj_imagelightbox2)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-1/ +cve: ~ branches: master: time: 2008-05-27 12:00 versions: [<=1.4.2] -reference: composer://typo3-ter/kj-imagelightbox2 +reference: composer://typo3-ter/kj-imagelightbox2 +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/locator/2015-06-15.yaml b/typo3-ter/locator/2015-06-15.yaml index 30e273361..49925a61b 100644 --- a/typo3-ter/locator/2015-06-15.yaml +++ b/typo3-ter/locator/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-009: SQL Injection vulnerability in extension Store Locator (locator)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-009/ -cve: ~ +title: "TYPO3-EXT-SA-2015-009: SQL Injection vulnerability in extension Store Locator (locator)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-009/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=3.3.0] -reference: composer://typo3-ter/locator +reference: composer://typo3-ter/locator +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/mh-httpbl/2015-09-30.yaml b/typo3-ter/mh-httpbl/2015-09-30.yaml index de431c62f..ca7e66488 100644 --- a/typo3-ter/mh-httpbl/2015-09-30.yaml +++ b/typo3-ter/mh-httpbl/2015-09-30.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-021: SQL Injection in extension 'http:BL Blocking' (mh_httpbl)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-021/ -cve: ~ +title: "TYPO3-EXT-SA-2015-021: SQL Injection in extension 'http:BL Blocking' (mh_httpbl)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-021/ +cve: ~ branches: master: time: 2015-09-30 12:00 versions: [<=1.1.7] -reference: composer://typo3-ter/mh-httpbl +reference: composer://typo3-ter/mh-httpbl +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/mkforms/2015-09-30.yaml b/typo3-ter/mkforms/2015-09-30.yaml index 273bd2f57..6c4168896 100644 --- a/typo3-ter/mkforms/2015-09-30.yaml +++ b/typo3-ter/mkforms/2015-09-30.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-022: Arbitrary Code Execution in extension 'MK Forms' (mkforms)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-022/ -cve: ~ +title: "TYPO3-EXT-SA-2015-022: Arbitrary Code Execution in extension 'MK Forms' (mkforms)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-022/ +cve: ~ branches: master: time: 2015-09-30 12:00 versions: [<=1.0.23] -reference: composer://typo3-ter/mkforms +reference: composer://typo3-ter/mkforms +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/mm-forum/2010-03-16.yaml b/typo3-ter/mm-forum/2010-03-16.yaml index ffd501e03..e50bcfba4 100644 --- a/typo3-ter/mm-forum/2010-03-16.yaml +++ b/typo3-ter/mm-forum/2010-03-16.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2010-007: Cross-Site Scripting vulnerability in extension mm_forum (mm_forum)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-007/ -cve: ~ +title: "TYPO3-SA-2010-007: Cross-Site Scripting vulnerability in extension mm_forum (mm_forum)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-007/ +cve: ~ branches: master: time: 2010-03-16 12:00 versions: [<=1.8.2] -reference: composer://typo3-ter/mm-forum +reference: composer://typo3-ter/mm-forum +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/mm-forum/2014-02-12.yaml b/typo3-ter/mm-forum/2014-02-12.yaml index 129f67098..41315c8a4 100644 --- a/typo3-ter/mm-forum/2014-02-12.yaml +++ b/typo3-ter/mm-forum/2014-02-12.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-001: Several vulnerabilities in extension mm_forum (mm_forum)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-001/ -cve: ~ +title: "TYPO3-EXT-SA-2014-001: Several vulnerabilities in extension mm_forum (mm_forum)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-001/ +cve: ~ branches: master: time: 2014-02-12 12:00 versions: [<=1.9.2] -reference: composer://typo3-ter/mm-forum +reference: composer://typo3-ter/mm-forum +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/multishop/2013-06-03.yaml b/typo3-ter/multishop/2013-06-03.yaml index c3604d1fa..d13254b60 100644 --- a/typo3-ter/multishop/2013-06-03.yaml +++ b/typo3-ter/multishop/2013-06-03.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-010: SQL Injection vulnerability in extension Multishop (multishop)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-010/ -cve: ~ +title: "TYPO3-EXT-SA-2013-010: SQL Injection vulnerability in extension Multishop (multishop)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-010/ +cve: ~ branches: master: time: 2013-06-03 12:00 versions: [<=2.0.38] -reference: composer://typo3-ter/multishop +reference: composer://typo3-ter/multishop +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml b/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml index c3d87315c..3481a1842 100644 --- a/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml +++ b/typo3-ter/ncgov-smoelenboek/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-010: SQL Injection vulnerability in extension Smoelenboek (ncgov_smoelenboek)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-010/ -cve: ~ +title: "TYPO3-EXT-SA-2015-010: SQL Injection vulnerability in extension Smoelenboek (ncgov_smoelenboek)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-010/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=1.0.8] -reference: composer://typo3-ter/ncgov-smoelenboek +reference: composer://typo3-ter/ncgov-smoelenboek +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/news/2015-09-30.yaml b/typo3-ter/news/2015-09-30.yaml index cbb379d61..c5643215b 100644 --- a/typo3-ter/news/2015-09-30.yaml +++ b/typo3-ter/news/2015-09-30.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-017: Cross-Site Scripting in extension 'News system' (news)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-017/ -cve: ~ +title: "TYPO3-EXT-SA-2015-017: Cross-Site Scripting in extension 'News system' (news)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-017/ +cve: ~ branches: master: time: 2015-09-30 12:00 versions: [<=3.2.1] -reference: composer://typo3-ter/news +reference: composer://typo3-ter/news +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/pagenotfoundhandling/2015-06-29.yaml b/typo3-ter/pagenotfoundhandling/2015-06-29.yaml index 23a64441e..87d7f3316 100644 --- a/typo3-ter/pagenotfoundhandling/2015-06-29.yaml +++ b/typo3-ter/pagenotfoundhandling/2015-06-29.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-015: Cross-Site Scripting in extension '404 Page not found handling' (pagenotfoundhandling)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-015/ -cve: ~ +title: "TYPO3-EXT-SA-2015-015: Cross-Site Scripting in extension '404 Page not found handling' (pagenotfoundhandling)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-015/ +cve: ~ branches: master: time: 2015-06-29 12:00 versions: [<=2.1.0] -reference: composer://typo3-ter/pagenotfoundhandling +reference: composer://typo3-ter/pagenotfoundhandling +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/pbsurvey/2008-05-13.yaml b/typo3-ter/pbsurvey/2008-05-13.yaml index aa6ce8c7b..752f3b579 100644 --- a/typo3-ter/pbsurvey/2008-05-13.yaml +++ b/typo3-ter/pbsurvey/2008-05-13.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080513-2: Cross Site Scripting vulnerability in extension Questionaire (pbsurvey)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-2/ -cve: ~ +title: "TYPO3-20080513-2: Cross Site Scripting vulnerability in extension Questionaire (pbsurvey)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-2/ +cve: ~ branches: master: time: 2008-05-13 12:00 versions: [<=1.2.0] -reference: composer://typo3-ter/pbsurvey +reference: composer://typo3-ter/pbsurvey +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/pbsurvey/2011-08-25.yaml b/typo3-ter/pbsurvey/2011-08-25.yaml index cd4dd3271..ddc801238 100644 --- a/typo3-ter/pbsurvey/2011-08-25.yaml +++ b/typo3-ter/pbsurvey/2011-08-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-004: Cross Site Scripting Vulnerability in extension Questionaire (pbsurvey)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-004/ -cve: ~ +title: "TYPO3-EXT-SA-2011-004: Cross Site Scripting Vulnerability in extension Questionaire (pbsurvey)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-004/ +cve: ~ branches: master: time: 2011-08-25 12:00 versions: [<=1.3.0] -reference: composer://typo3-ter/pbsurvey +reference: composer://typo3-ter/pbsurvey +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2009-01-23.yaml b/typo3-ter/phpmyadmin/2009-01-23.yaml index 42036cc5a..0f5560bd9 100644 --- a/typo3-ter/phpmyadmin/2009-01-23.yaml +++ b/typo3-ter/phpmyadmin/2009-01-23.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2009-015: XSS and SQL injection vulnerabilities in extension 'phpMyAdmin' (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-015/ -cve: ~ +title: "TYPO3-SA-2009-015: XSS and SQL injection vulnerabilities in extension 'phpMyAdmin' (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-015/ +cve: ~ branches: master: time: 2009-01-23 12:00 versions: [<=4.3.0] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2011-05-23.yaml b/typo3-ter/phpmyadmin/2011-05-23.yaml index 87acfb2af..52016f31f 100644 --- a/typo3-ter/phpmyadmin/2011-05-23.yaml +++ b/typo3-ter/phpmyadmin/2011-05-23.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2011-005: Cross-Site Scripting and Open Redirection vulnerability in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-005/ -cve: ~ +title: "TYPO3-SA-2011-005: Cross-Site Scripting and Open Redirection vulnerability in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-005/ +cve: ~ branches: master: time: 2011-05-23 12:00 versions: [<=4.10.3] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2011-07-06.yaml b/typo3-ter/phpmyadmin/2011-07-06.yaml index 7f2081928..2e489bbf1 100644 --- a/typo3-ter/phpmyadmin/2011-07-06.yaml +++ b/typo3-ter/phpmyadmin/2011-07-06.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2011-008: Directory Traversal and Code Injection vulnerability in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-008/ -cve: ~ +title: "TYPO3-SA-2011-008: Directory Traversal and Code Injection vulnerability in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-008/ +cve: ~ branches: master: time: 2011-07-06 12:00 versions: [<=4.11.1] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2011-07-25.yaml b/typo3-ter/phpmyadmin/2011-07-25.yaml index cba99f1a3..ed2f1f630 100644 --- a/typo3-ter/phpmyadmin/2011-07-25.yaml +++ b/typo3-ter/phpmyadmin/2011-07-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-001: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-001/ -cve: ~ +title: "TYPO3-EXT-SA-2011-001: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-001/ +cve: ~ branches: master: time: 2011-07-25 12:00 versions: [<=4.11.2] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2011-08-26.yaml b/typo3-ter/phpmyadmin/2011-08-26.yaml index 5aa2a4ddc..afaa0d299 100644 --- a/typo3-ter/phpmyadmin/2011-08-26.yaml +++ b/typo3-ter/phpmyadmin/2011-08-26.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-005: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-005/ -cve: ~ +title: "TYPO3-EXT-SA-2011-005: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-005/ +cve: ~ branches: master: time: 2011-08-26 12:00 versions: [<=4.11.3] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2011-09-15.yaml b/typo3-ter/phpmyadmin/2011-09-15.yaml index bcf68f6fa..7d1bf939c 100644 --- a/typo3-ter/phpmyadmin/2011-09-15.yaml +++ b/typo3-ter/phpmyadmin/2011-09-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-011: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-011/ -cve: ~ +title: "TYPO3-EXT-SA-2011-011: Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-011/ +cve: ~ branches: master: time: 2011-09-15 12:00 versions: [<=4.11.4] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2011-10-18.yaml b/typo3-ter/phpmyadmin/2011-10-18.yaml index e02b46560..e4ed5e64d 100644 --- a/typo3-ter/phpmyadmin/2011-10-18.yaml +++ b/typo3-ter/phpmyadmin/2011-10-18.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-014: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-014/ -cve: ~ +title: "TYPO3-EXT-SA-2011-014: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-014/ +cve: ~ branches: master: time: 2011-10-18 12:00 versions: [<=4.11.5] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2011-11-15.yaml b/typo3-ter/phpmyadmin/2011-11-15.yaml index 16dfd3aeb..317561e41 100644 --- a/typo3-ter/phpmyadmin/2011-11-15.yaml +++ b/typo3-ter/phpmyadmin/2011-11-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-018/ -cve: ~ +title: "TYPO3-EXT-SA-2011-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-018/ +cve: ~ branches: master: time: 2011-11-15 12:00 versions: [<=4.11.8] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2014-09-26.yaml b/typo3-ter/phpmyadmin/2014-09-26.yaml index a078eb2ec..f734f76b4 100644 --- a/typo3-ter/phpmyadmin/2014-09-26.yaml +++ b/typo3-ter/phpmyadmin/2014-09-26.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-011: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-011/ -cve: ~ +title: "TYPO3-EXT-SA-2014-011: Several vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-011/ +cve: ~ branches: master: time: 2014-09-26 12:00 versions: [<=4.18.2] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2014-11-05.yaml b/typo3-ter/phpmyadmin/2014-11-05.yaml index ca30756e8..71a03661f 100644 --- a/typo3-ter/phpmyadmin/2014-11-05.yaml +++ b/typo3-ter/phpmyadmin/2014-11-05.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-016: Cross-Site Scripting vulnerability in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-016/ -cve: ~ +title: "TYPO3-EXT-SA-2014-016: Cross-Site Scripting vulnerability in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-016/ +cve: ~ branches: master: time: 2014-11-05 12:00 versions: [>=4.18.0,<=4.18.3] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/phpmyadmin/2014-12-08.yaml b/typo3-ter/phpmyadmin/2014-12-08.yaml index e78f6803f..3af1dd697 100644 --- a/typo3-ter/phpmyadmin/2014-12-08.yaml +++ b/typo3-ter/phpmyadmin/2014-12-08.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-018/ -cve: ~ +title: "TYPO3-EXT-SA-2014-018: Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-018/ +cve: ~ branches: master: time: 2014-12-08 12:00 versions: [>=4.18.0,<4.18.5] -reference: composer://typo3-ter/phpmyadmin +reference: composer://typo3-ter/phpmyadmin +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/powermail/2011-05-11.yaml b/typo3-ter/powermail/2011-05-11.yaml index 28a1480c1..73db598d5 100644 --- a/typo3-ter/powermail/2011-05-11.yaml +++ b/typo3-ter/powermail/2011-05-11.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2011-004: Blind SQL Injection vulnerability in extension 'powermail' (powermail)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-004/ -cve: ~ +title: "TYPO3-SA-2011-004: Blind SQL Injection vulnerability in extension 'powermail' (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-004/ +cve: ~ branches: master: time: 2011-05-11 12:00 versions: [>=1.6.0,<=1.6.2] -reference: composer://typo3-ter/powermail +reference: composer://typo3-ter/powermail +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/powermail/2012-03-28.yaml b/typo3-ter/powermail/2012-03-28.yaml index cb2251bac..5d016a707 100644 --- a/typo3-ter/powermail/2012-03-28.yaml +++ b/typo3-ter/powermail/2012-03-28.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-004: Cross-Site Scripting vulnerability in extension powermail for TYPO3 (powermail)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-004/ -cve: ~ +title: "TYPO3-EXT-SA-2012-004: Cross-Site Scripting vulnerability in extension powermail for TYPO3 (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-004/ +cve: ~ branches: master: time: 2012-03-28 12:00 versions: [<=1.6.4] -reference: composer://typo3-ter/powermail +reference: composer://typo3-ter/powermail +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/powermail/2012-06-07.yaml b/typo3-ter/powermail/2012-06-07.yaml index 998d21cbe..cd4f7c56b 100644 --- a/typo3-ter/powermail/2012-06-07.yaml +++ b/typo3-ter/powermail/2012-06-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-009: Cross-site scripting vulnerability in extension powermail for TYPO3 (powermail)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-009/ -cve: ~ +title: "TYPO3-EXT-SA-2012-009: Cross-site scripting vulnerability in extension powermail for TYPO3 (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-009/ +cve: ~ branches: master: time: 2012-06-07 12:00 versions: [<=1.6.6] -reference: composer://typo3-ter/powermail +reference: composer://typo3-ter/powermail +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/powermail/2014-04-10.yaml b/typo3-ter/powermail/2014-04-10.yaml index 5e7458bbf..c7272b33a 100644 --- a/typo3-ter/powermail/2014-04-10.yaml +++ b/typo3-ter/powermail/2014-04-10.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-006: Captcha Bypass in extension 'powermail' (powermail)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-006/ -cve: ~ +title: "TYPO3-EXT-SA-2014-006: Captcha Bypass in extension 'powermail' (powermail)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-006/ +cve: ~ branches: master: time: 2014-04-10 12:00 versions: [>=2.0.0,<=2.0.10] -reference: composer://typo3-ter/powermail +reference: composer://typo3-ter/powermail +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/pt-extbase/2014-02-12.yaml b/typo3-ter/pt-extbase/2014-02-12.yaml index 4d29bb1cf..964b85eb4 100644 --- a/typo3-ter/pt-extbase/2014-02-12.yaml +++ b/typo3-ter/pt-extbase/2014-02-12.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ -cve: ~ +title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ +cve: ~ branches: master: time: 2014-02-12 12:00 versions: [<=1.5.0] -reference: composer://typo3-ter/pt-extbase +reference: composer://typo3-ter/pt-extbase +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/realurl/2013-09-25.yaml b/typo3-ter/realurl/2013-09-25.yaml index 480412fb4..9aa89dcf9 100644 --- a/typo3-ter/realurl/2013-09-25.yaml +++ b/typo3-ter/realurl/2013-09-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-015: SQL Injection vulnerability in extension RealURL: speaking paths for TYPO3 (realurl)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-015/ -cve: ~ +title: "TYPO3-EXT-SA-2013-015: SQL Injection vulnerability in extension RealURL: speaking paths for TYPO3 (realurl)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-015/ +cve: ~ branches: master: time: 2013-09-25 12:00 versions: [<=1.12.6] -reference: composer://typo3-ter/realurl +reference: composer://typo3-ter/realurl +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/rgsmoothgallery/2011-09-07.yaml b/typo3-ter/rgsmoothgallery/2011-09-07.yaml index 5db67e2b7..30191e235 100644 --- a/typo3-ter/rgsmoothgallery/2011-09-07.yaml +++ b/typo3-ter/rgsmoothgallery/2011-09-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-008: Several Vulnerabilities in extension SmoothGallery for TYPO3 (rgsmoothgallery)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-008/ -cve: ~ +title: "TYPO3-EXT-SA-2011-008: Several Vulnerabilities in extension SmoothGallery for TYPO3 (rgsmoothgallery)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-008/ +cve: ~ branches: master: time: 2011-09-07 12:00 versions: [<=1.5.1] -reference: composer://typo3-ter/rgsmoothgallery +reference: composer://typo3-ter/rgsmoothgallery +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/rlmp-eventdb/2008-05-13.yaml b/typo3-ter/rlmp-eventdb/2008-05-13.yaml index e52efe60b..070a40933 100644 --- a/typo3-ter/rlmp-eventdb/2008-05-13.yaml +++ b/typo3-ter/rlmp-eventdb/2008-05-13.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080513-3: Cross Site Scripting vulnerability in extension Event Database (rlmp_eventdb)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-3/ -cve: ~ +title: "TYPO3-20080513-3: Cross Site Scripting vulnerability in extension Event Database (rlmp_eventdb)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080513-3/ +cve: ~ branches: master: time: 2008-05-13 12:00 versions: [<=1.1.1] -reference: composer://typo3-ter/rlmp-eventdb +reference: composer://typo3-ter/rlmp-eventdb +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/sb-akronymmanager/2015-06-18.yaml b/typo3-ter/sb-akronymmanager/2015-06-18.yaml index 613ee2402..280786c55 100644 --- a/typo3-ter/sb-akronymmanager/2015-06-18.yaml +++ b/typo3-ter/sb-akronymmanager/2015-06-18.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-014: SQL Injection in extension 'Akronymmanager' (sb_akronymmanager)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-014/ -cve: ~ +title: "TYPO3-EXT-SA-2015-014: SQL Injection in extension 'Akronymmanager' (sb_akronymmanager)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-014/ +cve: ~ branches: master: time: 2015-06-18 12:00 versions: [<=0.5.0] -reference: composer://typo3-ter/sb-akronymmanager +reference: composer://typo3-ter/sb-akronymmanager +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/seminars/2012-07-03.yaml b/typo3-ter/seminars/2012-07-03.yaml index 752237ac0..5331fa38a 100644 --- a/typo3-ter/seminars/2012-07-03.yaml +++ b/typo3-ter/seminars/2012-07-03.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-010: Cross-site scripting vulnerability in extension Seminars (seminars)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-010/ -cve: ~ +title: "TYPO3-EXT-SA-2012-010: Cross-site scripting vulnerability in extension Seminars (seminars)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-010/ +cve: ~ branches: master: time: 2012-07-03 12:00 versions: [<=0.9.3] -reference: composer://typo3-ter/seminars +reference: composer://typo3-ter/seminars +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/seo-basics/2012-03-28.yaml b/typo3-ter/seo-basics/2012-03-28.yaml index a19ad04e6..51faef6af 100644 --- a/typo3-ter/seo-basics/2012-03-28.yaml +++ b/typo3-ter/seo-basics/2012-03-28.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-006: Cross-Site Scripting vulnerability in extension Basic SEO Features (seo_basics)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-006/ -cve: ~ +title: "TYPO3-EXT-SA-2012-006: Cross-Site Scripting vulnerability in extension Basic SEO Features (seo_basics)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-006/ +cve: ~ branches: master: time: 2012-03-28 12:00 versions: [<=0.8.1] -reference: composer://typo3-ter/seo-basics +reference: composer://typo3-ter/seo-basics +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/seo-basics/2012-06-07.yaml b/typo3-ter/seo-basics/2012-06-07.yaml index c5260193b..b0a40a393 100644 --- a/typo3-ter/seo-basics/2012-06-07.yaml +++ b/typo3-ter/seo-basics/2012-06-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-007: SQL Injection vulnerability in extension Basic SEO Features (seo_basics)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-007/ -cve: ~ +title: "TYPO3-EXT-SA-2012-007: SQL Injection vulnerability in extension Basic SEO Features (seo_basics)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-007/ +cve: ~ branches: master: time: 2012-06-07 12:00 versions: [<=0.8.2] -reference: composer://typo3-ter/seo-basics +reference: composer://typo3-ter/seo-basics +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/sg-zfelib/2008-05-27.yaml b/typo3-ter/sg-zfelib/2008-05-27.yaml index 81f29988c..77a4501e9 100644 --- a/typo3-ter/sg-zfelib/2008-05-27.yaml +++ b/typo3-ter/sg-zfelib/2008-05-27.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080527-2: SQL Injection in extension 'Library for Frontend plugins' (sg_zfelib)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-2/ -cve: ~ +title: "TYPO3-20080527-2: SQL Injection in extension 'Library for Frontend plugins' (sg_zfelib)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080527-2/ +cve: ~ branches: master: time: 2008-05-27 12:00 versions: [<=1.1.512] -reference: composer://typo3-ter/sg-zfelib +reference: composer://typo3-ter/sg-zfelib +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/si-bibtex/2014-12-15.yaml b/typo3-ter/si-bibtex/2014-12-15.yaml index bf56e1cb1..c7e357566 100644 --- a/typo3-ter/si-bibtex/2014-12-15.yaml +++ b/typo3-ter/si-bibtex/2014-12-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-020: Multiple vulnerabilities in BibTex Publications (si_bibtex)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-020/ -cve: ~ +title: "TYPO3-EXT-SA-2014-020: Multiple vulnerabilities in BibTex Publications (si_bibtex)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-020/ +cve: ~ branches: master: time: 2014-12-15 12:00 versions: [<=0.2.3] -reference: composer://typo3-ter/si-bibtex +reference: composer://typo3-ter/si-bibtex +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/solr/2013-09-25.yaml b/typo3-ter/solr/2013-09-25.yaml index 81dd4743c..b096804bc 100644 --- a/typo3-ter/solr/2013-09-25.yaml +++ b/typo3-ter/solr/2013-09-25.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-009: Several vulnerabilities in extension Apache Solr for TYPO3 (solr)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009/ -cve: ~ +title: "TYPO3-EXT-SA-2013-009: Several vulnerabilities in extension Apache Solr for TYPO3 (solr)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009/ +cve: ~ branches: master: time: 2013-09-25 12:00 versions: [<=2.8.2] -reference: composer://typo3-ter/solr +reference: composer://typo3-ter/solr +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/sr-feuser-register/2010-04-14.yaml b/typo3-ter/sr-feuser-register/2010-04-14.yaml index 31cead642..2676a6890 100644 --- a/typo3-ter/sr-feuser-register/2010-04-14.yaml +++ b/typo3-ter/sr-feuser-register/2010-04-14.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2010-009: Vulnerabilitiy in extension Frontend User Registration (sr_feuser_register)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-009/ -cve: ~ +title: "TYPO3-SA-2010-009: Vulnerabilitiy in extension Frontend User Registration (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-009/ +cve: ~ branches: master: time: 2010-04-14 12:00 versions: [<=2.5.24] -reference: composer://typo3-ter/sr-feuser-register +reference: composer://typo3-ter/sr-feuser-register +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/sr-feuser-register/2010-07-28.yaml b/typo3-ter/sr-feuser-register/2010-07-28.yaml index d0226f97c..da3c4a007 100644 --- a/typo3-ter/sr-feuser-register/2010-07-28.yaml +++ b/typo3-ter/sr-feuser-register/2010-07-28.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2010-013: Vulnerabilitiy in extension Front End User Registration (sr_feuser_register)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-013/ -cve: ~ +title: "TYPO3-SA-2010-013: Vulnerabilitiy in extension Front End User Registration (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-013/ +cve: ~ branches: master: time: 2010-07-28 12:00 versions: [>=2.5.25,<=2.5.25] -reference: composer://typo3-ter/sr-feuser-register +reference: composer://typo3-ter/sr-feuser-register +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/sr-feuser-register/2012-02-23.yaml b/typo3-ter/sr-feuser-register/2012-02-23.yaml index 26f888e9d..24a132bec 100644 --- a/typo3-ter/sr-feuser-register/2012-02-23.yaml +++ b/typo3-ter/sr-feuser-register/2012-02-23.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2012-002: Information disclosure vulnerabilities in extension 'Front End User Registration' (sr_feuser_register)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-002/ -cve: ~ +title: "TYPO3-EXT-SA-2012-002: Information disclosure vulnerabilities in extension 'Front End User Registration' (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-002/ +cve: ~ branches: master: time: 2012-02-23 12:00 versions: [<=2.6.1] -reference: composer://typo3-ter/sr-feuser-register +reference: composer://typo3-ter/sr-feuser-register +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/sr-feuser-register/2013-08-05.yaml b/typo3-ter/sr-feuser-register/2013-08-05.yaml index ca027d7b2..e3a49f360 100644 --- a/typo3-ter/sr-feuser-register/2013-08-05.yaml +++ b/typo3-ter/sr-feuser-register/2013-08-05.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-011: Cross-Site Scripting vulnerability in extension Front End User Registration (sr_feuser_register)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-011/ -cve: ~ +title: "TYPO3-EXT-SA-2013-011: Cross-Site Scripting vulnerability in extension Front End User Registration (sr_feuser_register)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-011/ +cve: ~ branches: master: time: 2013-08-05 12:00 versions: [<=3.0.1] -reference: composer://typo3-ter/sr-feuser-register +reference: composer://typo3-ter/sr-feuser-register +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/sr-sendcard/2008-07-01.yaml b/typo3-ter/sr-sendcard/2008-07-01.yaml index bc42de464..7830a41f7 100644 --- a/typo3-ter/sr-sendcard/2008-07-01.yaml +++ b/typo3-ter/sr-sendcard/2008-07-01.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080701-3: Multiple vulnerabilities in extension Send-A-Card (sr_sendcard)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-3/ -cve: ~ +title: "TYPO3-20080701-3: Multiple vulnerabilities in extension Send-A-Card (sr_sendcard)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-3/ +cve: ~ branches: master: time: 2008-07-01 12:00 versions: [<=2.2.2] -reference: composer://typo3-ter/sr-sendcard +reference: composer://typo3-ter/sr-sendcard +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/static-info-tables/2013-02-19.yaml b/typo3-ter/static-info-tables/2013-02-19.yaml index 8a39bd499..ea9ed54da 100644 --- a/typo3-ter/static-info-tables/2013-02-19.yaml +++ b/typo3-ter/static-info-tables/2013-02-19.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2013-004: Cross-Site Scripting vulnerability in extension Static Info Tables (static_info_tables)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-004/ -cve: ~ +title: "TYPO3-EXT-SA-2013-004: Cross-Site Scripting vulnerability in extension Static Info Tables (static_info_tables)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-004/ +cve: ~ branches: master: time: 2013-02-19 12:00 versions: [<=2.3.0] -reference: composer://typo3-ter/static-info-tables +reference: composer://typo3-ter/static-info-tables +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/t3adminer/2015-09-30.yaml b/typo3-ter/t3adminer/2015-09-30.yaml index c33f1e66c..f9083a1b6 100644 --- a/typo3-ter/t3adminer/2015-09-30.yaml +++ b/typo3-ter/t3adminer/2015-09-30.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-018: Information Disclosure in extension 'Adminer' (t3adminer)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-018/ -cve: ~ +title: "TYPO3-EXT-SA-2015-018: Information Disclosure in extension 'Adminer' (t3adminer)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-018/ +cve: ~ branches: master: time: 2015-09-30 12:00 versions: [<=7.0.1] -reference: composer://typo3-ter/t3adminer +reference: composer://typo3-ter/t3adminer +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/t3blog/2010-02-01.yaml b/typo3-ter/t3blog/2010-02-01.yaml index c8e06cc64..ee28bc42d 100644 --- a/typo3-ter/t3blog/2010-02-01.yaml +++ b/typo3-ter/t3blog/2010-02-01.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2010-002: Multiple vulnerabilities in extension T3BLOG (t3blog)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-002/ -cve: ~ +title: "TYPO3-SA-2010-002: Multiple vulnerabilities in extension T3BLOG (t3blog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-002/ +cve: ~ branches: master: time: 2010-02-01 12:00 versions: [<=0.6.2] -reference: composer://typo3-ter/t3blog +reference: composer://typo3-ter/t3blog +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/t3blog/2011-09-27.yaml b/typo3-ter/t3blog/2011-09-27.yaml index e6e448fcd..22651a080 100644 --- a/typo3-ter/t3blog/2011-09-27.yaml +++ b/typo3-ter/t3blog/2011-09-27.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-013: Cross-Site scripting vulnerability in extension t3blog (t3blog)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-013/ -cve: ~ +title: "TYPO3-EXT-SA-2011-013: Cross-Site scripting vulnerability in extension t3blog (t3blog)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-013/ +cve: ~ branches: master: time: 2011-09-27 12:00 versions: [<=1.1.1] -reference: composer://typo3-ter/t3blog +reference: composer://typo3-ter/t3blog +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/t3m/2009-08-18.yaml b/typo3-ter/t3m/2009-08-18.yaml index 8b7d4d816..b418d318d 100644 --- a/typo3-ter/t3m/2009-08-18.yaml +++ b/typo3-ter/t3m/2009-08-18.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2009-012: Blind SQL Injection vulnerability in extension T3M E-Mail Marketing Tool (t3m)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-012/ -cve: ~ +title: "TYPO3-SA-2009-012: Blind SQL Injection vulnerability in extension T3M E-Mail Marketing Tool (t3m)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-012/ +cve: ~ branches: master: time: 2009-08-18 12:00 versions: [<=0.2.4] -reference: composer://typo3-ter/t3m +reference: composer://typo3-ter/t3m +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/t3quixplorer/2015-09-30.yaml b/typo3-ter/t3quixplorer/2015-09-30.yaml index 7050b1111..4dee1eb4e 100644 --- a/typo3-ter/t3quixplorer/2015-09-30.yaml +++ b/typo3-ter/t3quixplorer/2015-09-30.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-020: Cross-Site Request Forgery in extension 'Typo3 Quixplorer' (t3quixplorer)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-020/ -cve: ~ +title: "TYPO3-EXT-SA-2015-020: Cross-Site Request Forgery in extension 'Typo3 Quixplorer' (t3quixplorer)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-020/ +cve: ~ branches: master: time: 2015-09-30 12:00 versions: [<=1.7.2] -reference: composer://typo3-ter/t3quixplorer +reference: composer://typo3-ter/t3quixplorer +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/th-mailformplus/2008-05-05.yaml b/typo3-ter/th-mailformplus/2008-05-05.yaml index 23b3ab107..1ba5d8699 100644 --- a/typo3-ter/th-mailformplus/2008-05-05.yaml +++ b/typo3-ter/th-mailformplus/2008-05-05.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080505-1: Multiple vulnerabilities in extension MailformPlus (th_mailformplus)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080505-1/ -cve: ~ +title: "TYPO3-20080505-1: Multiple vulnerabilities in extension MailformPlus (th_mailformplus)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080505-1/ +cve: ~ branches: master: time: 2008-05-05 12:00 versions: [<=4.0.3] -reference: composer://typo3-ter/th-mailformplus +reference: composer://typo3-ter/th-mailformplus +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/th-mailformplus/2011-09-07.yaml b/typo3-ter/th-mailformplus/2011-09-07.yaml index 20f6b4a00..dfcbe9b36 100644 --- a/typo3-ter/th-mailformplus/2011-09-07.yaml +++ b/typo3-ter/th-mailformplus/2011-09-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2011-009: Several Vulnerabilities in extension MailformPlus (th_mailformplus)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-009/ -cve: ~ +title: "TYPO3-EXT-SA-2011-009: Several Vulnerabilities in extension MailformPlus (th_mailformplus)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-009/ +cve: ~ branches: master: time: 2011-09-07 12:00 versions: [<=4.0.15] -reference: composer://typo3-ter/th-mailformplus +reference: composer://typo3-ter/th-mailformplus +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/tipafriend/2010-04-14.yaml b/typo3-ter/tipafriend/2010-04-14.yaml index fbcc157c1..26b520275 100644 --- a/typo3-ter/tipafriend/2010-04-14.yaml +++ b/typo3-ter/tipafriend/2010-04-14.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2010-010: Vulnerabilitiy in extension Tip-A-Friend (tipafriend)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-010/ -cve: ~ +title: "TYPO3-SA-2010-010: Vulnerabilitiy in extension Tip-A-Friend (tipafriend)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2010-010/ +cve: ~ branches: master: time: 2010-04-14 12:00 versions: [>=1.2.3,<=1.2.3] -reference: composer://typo3-ter/tipafriend +reference: composer://typo3-ter/tipafriend +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/tt-news/2014-02-12.yaml b/typo3-ter/tt-news/2014-02-12.yaml index 87d7d9ccc..d180424cd 100644 --- a/typo3-ter/tt-news/2014-02-12.yaml +++ b/typo3-ter/tt-news/2014-02-12.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-003: Insecure Unserialize in extension News (tt_news)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-003/ -cve: ~ +title: "TYPO3-EXT-SA-2014-003: Insecure Unserialize in extension News (tt_news)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-003/ +cve: ~ branches: master: time: 2014-02-12 12:00 versions: [<=3.5.1] -reference: composer://typo3-ter/tt-news +reference: composer://typo3-ter/tt-news +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/ve-guestbook/2009-06-16.yaml b/typo3-ter/ve-guestbook/2009-06-16.yaml index bb32bd9c8..7bb1e856f 100644 --- a/typo3-ter/ve-guestbook/2009-06-16.yaml +++ b/typo3-ter/ve-guestbook/2009-06-16.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2009-009: Cross-Site Scripting vulnerability in extension Modern Guestbook / Commenting System (ve_guestbook)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-009/ -cve: ~ +title: "TYPO3-SA-2009-009: Cross-Site Scripting vulnerability in extension Modern Guestbook / Commenting System (ve_guestbook)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2009-009/ +cve: ~ branches: master: time: 2009-06-16 12:00 versions: [<=2.7.1] -reference: composer://typo3-ter/ve-guestbook +reference: composer://typo3-ter/ve-guestbook +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/webdav/2014-11-27.yaml b/typo3-ter/webdav/2014-11-27.yaml index 23f302a03..f26ec24c4 100644 --- a/typo3-ter/webdav/2014-11-27.yaml +++ b/typo3-ter/webdav/2014-11-27.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-017: Improper Access Control in WebDav for filemounts (webdav)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-017/ -cve: ~ +title: "TYPO3-EXT-SA-2014-017: Improper Access Control in WebDav for filemounts (webdav)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-017/ +cve: ~ branches: master: time: 2014-11-27 12:00 versions: [>=2.0.0,<=2.0.0] -reference: composer://typo3-ter/webdav +reference: composer://typo3-ter/webdav +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/wec-discussion/2008-07-01.yaml b/typo3-ter/wec-discussion/2008-07-01.yaml index 32937b8b3..95fe75b48 100644 --- a/typo3-ter/wec-discussion/2008-07-01.yaml +++ b/typo3-ter/wec-discussion/2008-07-01.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-20080701-4: Multiple vulnerabilities in extension WEC Discussion Forum (wec_discussion)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-4/ -cve: ~ +title: "TYPO3-20080701-4: Multiple vulnerabilities in extension WEC Discussion Forum (wec_discussion)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-20080701-4/ +cve: ~ branches: master: time: 2008-07-01 12:00 versions: [<=1.6.2] -reference: composer://typo3-ter/wec-discussion +reference: composer://typo3-ter/wec-discussion +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/wec-discussion/2011-04-07.yaml b/typo3-ter/wec-discussion/2011-04-07.yaml index ba07edcc9..4dea8bc67 100644 --- a/typo3-ter/wec-discussion/2011-04-07.yaml +++ b/typo3-ter/wec-discussion/2011-04-07.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-SA-2011-003: SQL Injection vulnerabilities in extension 'WEC Discussion Forum' (wec_discussion)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-003/ -cve: ~ +title: "TYPO3-SA-2011-003: SQL Injection vulnerabilities in extension 'WEC Discussion Forum' (wec_discussion)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-sa-2011-003/ +cve: ~ branches: master: time: 2011-04-07 12:00 versions: [<=2.1.0] -reference: composer://typo3-ter/wec-discussion +reference: composer://typo3-ter/wec-discussion +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/wf-gallery/2014-12-15.yaml b/typo3-ter/wf-gallery/2014-12-15.yaml index 71b856101..c15b1f3a0 100644 --- a/typo3-ter/wf-gallery/2014-12-15.yaml +++ b/typo3-ter/wf-gallery/2014-12-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-021: Cross-Site Scripting vulnerability in wfGallery (wf_gallery)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-021/ -cve: ~ +title: "TYPO3-EXT-SA-2014-021: Cross-Site Scripting vulnerability in wfGallery (wf_gallery)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-021/ +cve: ~ branches: master: time: 2014-12-15 12:00 versions: [<=1.0.3] -reference: composer://typo3-ter/wf-gallery +reference: composer://typo3-ter/wf-gallery +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/wt-directory/2015-06-15.yaml b/typo3-ter/wt-directory/2015-06-15.yaml index 8f5219bd4..0dd131e8f 100644 --- a/typo3-ter/wt-directory/2015-06-15.yaml +++ b/typo3-ter/wt-directory/2015-06-15.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-008: SQL Injection vulnerability in extension wt_directory (wt_directory)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-008/ -cve: ~ +title: "TYPO3-EXT-SA-2015-008: SQL Injection vulnerability in extension wt_directory (wt_directory)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-008/ +cve: ~ branches: master: time: 2015-06-15 12:00 versions: [<=1.4.1] -reference: composer://typo3-ter/wt-directory +reference: composer://typo3-ter/wt-directory +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/yag/2014-02-12.yaml b/typo3-ter/yag/2014-02-12.yaml index f8c2001a0..a6d025b77 100644 --- a/typo3-ter/yag/2014-02-12.yaml +++ b/typo3-ter/yag/2014-02-12.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ -cve: ~ +title: "TYPO3-EXT-SA-2014-005: Access Bypass in extensions 'Yet Another Gallery' (yag) and 'Tools for Extbase development' (pt_extbase)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-005/ +cve: ~ branches: master: time: 2014-02-12 12:00 versions: [<=3.0.0] -reference: composer://typo3-ter/yag +reference: composer://typo3-ter/yag +composer-repository: https://composer.typo3.org diff --git a/typo3-ter/zend-framework/2015-09-30.yaml b/typo3-ter/zend-framework/2015-09-30.yaml index bd116dbf3..3b8cc165c 100644 --- a/typo3-ter/zend-framework/2015-09-30.yaml +++ b/typo3-ter/zend-framework/2015-09-30.yaml @@ -1,8 +1,9 @@ -title: "TYPO3-EXT-SA-2015-019: File Disclosure in extension 'Zend Framework Integration' (zend_framework)" -link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-019/ -cve: ~ +title: "TYPO3-EXT-SA-2015-019: File Disclosure in extension 'Zend Framework Integration' (zend_framework)" +link: http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-019/ +cve: ~ branches: master: time: 2015-09-30 12:00 versions: [<=1.7.6] -reference: composer://typo3-ter/zend-framework +reference: composer://typo3-ter/zend-framework +composer-repository: https://composer.typo3.org