CVE-2013-5303

critical

Published 2013-08-16 · Modified 2026-04-29

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

Unspecified vulnerability in the Store Locator (locator) extension before 3.1.5 for TYPO3 has unknown impact and remote attack vectors, related to "Insecure Unserialize."

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-013

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://typo3.org/extensions/repository/view/locator

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://secunia.com/advisories/54350

Application impact

Vendor	Product	Versions
joachim_ruhs	locator	`{"endIncluding":"2.9.1"}`
joachim_ruhs	locator	`1.0.6`
joachim_ruhs	locator	`1.0.7`
joachim_ruhs	locator	`1.1.0`
joachim_ruhs	locator	`1.1.8`
joachim_ruhs	locator	`1.2.6`
joachim_ruhs	locator	`1.2.8`
joachim_ruhs	locator	`2.9.0`
typo3	typo3	`-`

References

Verify integrity in audit chain (admin only). AS-IS.