Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2021/07/21 12:0 a.m.16 views

TYPO3 Information Disclosure Vulnerability (TYPO3-CORE-SA-2021-012)

TYPO3 is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; if...

6.5CVSS6.2AI score0.00829EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/07/20 4:0 p.m.41 views

CVE-2021-32767 Information Disclosure in User Authentication

TYPO3 is an open source PHP based web content management system. In versions 9.0.0 through 9.5.27, 10.0.0 through 10.4.17, and 11.0.0 through 11.3.0, user credentials may been logged as plain-text. This occurs when explicitly using log level debug, which is not the default configuration. TYPO3...

5.3CVSS6.7AI score0.00829EPSS
Exploits0References2
CVE
CVE
added 2021/07/20 4:0 p.m.77 views

CVE-2021-32767

TYPO3 Information Disclosure (CVE-2021-32767) affects TYPO3 CMS versions 9.0.0–9.5.27, 10.0.0–10.4.17, and 11.0.0–11.3.0, where user credentials may be logged in plaintext when debug logging is explicitly enabled (not the default). A patch exists in TYPO3 9.5.28, 10.4.18, and 11.3.1. Connected ad...

6.5CVSS5.7AI score0.00829EPSS
Exploits0References2Affected Software1
NCSC
NCSC
added 2021/07/20 12:0 a.m.7 views

Vulnerabilities fixed in Typo3

The developers of Typo3 have fixed vulnerabilities in Typo3 Core. The vulnerabilities allow a malicious party to perform Perform cross-site scripting XSS attacks. Such attacks can lead to the execution of arbitrary script code in the context of the victim's browser. In order to perform such an...

6.5CVSS6.2AI score0.00829EPSS
Exploits0
Rows per page
Query Builder