CVE-2010-3716

2010-10-25T20:01:00
ID CVE-2010-3716
Type cve
Reporter cve@mitre.org
Modified 2010-10-27T04:00:00

Description

The be_user_creation task in TYPO3 4.2.x before 4.2.15 and 4.3.x before 4.3.7 allows remote authenticated users to gain privileges via a crafted POST request that creates a user account with arbitrary group memberships.