CVE-2015-8756

EPSS 0.19% · P40 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-8756

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site scripting (XSS) vulnerability in the search result view in the Indexed Search (indexed_search) component in TYPO3 6.2.x before 6.2.16 allows remote authenticated editors to inject arbitrary web script or HTML via unspecified vectors.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

TYPO3 Indexed Search组件跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

TYPO3是瑞士TYPO3协会维护的一套免费开源的内容管理系统(框架)(CMS/CMF)。Indexed Search（indexed_search）是其中的一个提供索引和搜索功能的扩展插件。 TYPO3 6.2.16之前6.2.x版本的Indexed Search(indexed_search)组件中的搜索结果查看中存在跨站脚本漏洞。远程攻击者可利用该漏洞注入任意Web脚本或HTML。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-8756

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-8756

请登录查看更多情报信息。

http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/x_refsource_CONFIRM
http://www.securitytracker.com/id/1034486vdb-entryx_refsource_SECTRACK
https://nvd.nist.gov/vuln/detail/CVE-2015-8756

Same Patch Batch · n/a · 2016-01-08 · 47 CVEs total

CVE-2015-8753		SAP Afaria 权限许可和访问控制漏洞
CVE-2015-8757		TYPO3 Extension Manager 跨站脚本漏洞
CVE-2015-8759		TYPO3‘typoLink()’函数跨站脚本漏洞
CVE-2015-6433		Cisco Unified Communications Manager SQL注入漏洞
CVE-2015-6434		Cisco Prime Infrastructure 安全漏洞
CVE-2015-6862		HPE UCMDB Browser 安全漏洞
CVE-2015-8261		Ipswitch WhatsUp Gold DroneDeleteOldMeasurements 安全漏洞
CVE-2016-1131		Takumi Yamada DX Library 缓冲区溢出漏洞
CVE-2015-8761		Drupal Values模块代码注入漏洞
CVE-2015-8754		Drupal Mollom模块安全漏洞
CVE-2015-8755		TYPO3后端组件跨站脚本漏洞
CVE-2015-8668		Silicon Graphics LibTiff 基于堆的缓冲区溢出漏洞
CVE-2015-8615		Xen‘hvm/irq.c’拒绝服务漏洞
CVE-2015-8612		Blueman 权限许可和访问控制漏洞
CVE-2015-8597		Blue Coat Systems ProxySG和Advanced Secure Gateway 开放重定向漏洞
CVE-2015-8547		Quassel 拒绝服务漏洞
CVE-2015-8481		多款Atlassian JIRA产品权限许可和访问控制问题漏洞
CVE-2015-8303		Huawei Document Security Management 本地信息泄露漏洞
CVE-2015-8226		Huawei ALE和GEM-703L Joint Photographic Experts Group Processing Unit 输入验证漏洞
CVE-2015-8225		Huawei ALE和GEM-703L Joint Photographic Experts Group Processing Unit 输入验证漏洞

Showing top 20 of 47 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-8756

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2015-8756

I. Basic Information for CVE-2015-8756

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-8756

III. Intelligence Information for CVE-2015-8756

Same Patch Batch · n/a · 2016-01-08 · 47 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2015-8756

Leave a comment