Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/03/17 12:0 a.m.44 views

FreeBSD : typo3-{11,12} -- multiple vulnerabilities (1ad3d264-e36b-11ee-9c27-40b034429ecf)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 1ad3d264-e36b-11ee-9c27-40b034429ecf advisory. - In TYPO3 11.5.24, the filelist component allows attackers who have access to the administrat...

7.2CVSS6AI score0.02017EPSS
Exploits3References8
Circl
Circl
added 2024/02/14 12:22 a.m.7 views

CVE-2024-25120

creationtimestamp| type| source ---|---|--- 2024-02-14 00:22:00+00:00| seen| https://t.me/ctinow/184322 2024-03-06 07:36:25+00:00| seen| https://t.me/ctinow/201071...

4.3CVSS4.6AI score0.00548EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/13 10:15 p.m.36 views

CVE-2024-25120 Improper Access Control of Resources Referenced by t3:// URI Scheme in TYPO3

TYPO3 is an open source PHP based web content management system released under the GNU GPL. The TYPO3-specific t3:// URI scheme could be used to access resources outside of the users' permission scope. This encompassed files, folders, pages, and records although only if a valid link-handling...

4.3CVSS6.6AI score0.00548EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/13 10:15 p.m.51 views

CVE-2024-25120 Improper Access Control of Resources Referenced by t3:// URI Scheme in TYPO3

TYPO3 is an open source PHP based web content management system released under the GNU GPL. The TYPO3-specific t3:// URI scheme could be used to access resources outside of the users' permission scope. This encompassed files, folders, pages, and records although only if a valid link-handling...

4.3CVSS5.1AI score0.00548EPSS
Exploits0References3
CVE
CVE
added 2024/02/13 10:15 p.m.93 views

CVE-2024-25120

CVE-2024-25120 affects TYPO3 and concerns improper access control of resources referenced by the t3:// URI scheme. The vulnerability could allow a backend authenticated user to access resources outside the user’s permission scope (files, folders, pages, records) via t3:// link handling. Affected ...

4.3CVSS4.4AI score0.00548EPSS
Exploits0References3Affected Software1
FreeBSD
FreeBSD
added 2024/02/13 12:0 a.m.37 views

typo3-{11,12} -- multiple vulnerabilities

Typo3 developers reports: All versions are security releases and contain important security fixes - read the corresponding security advisories here: Path Traversal in TYPO3 File Abstraction Layer Storages CVE-2023-30451 Code Execution in TYPO3 Install Tool CVE-2024-22188 Information Disclosure of...

7.2CVSS7.1AI score0.02017EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2024/02/13 12:0 a.m.29 views

TYPO3 8.0.0 < 8.7.57 ELTS / 9.0.0 < 9.5.46 ELTS / 10.0.0 < 10.4.43 ELTS / 11.0.0 < 11.5.35 / 12.0.0 < 12.4.11 / 13.0.1 (TYPO3-CORE-SA-2024-005)

The version of TYPO3 installed on the remote host is prior to 8.0.0 8.7.57 ELTS / 9.0.0 9.5.46 ELTS / 10.0.0 10.4.43 ELTS / 11.0.0 11.5.35 / 12.0.0 12.4.11 / 13.0.1. It is, therefore, affected by a vulnerability as referenced in the TYPO3-CORE-SA-2024-005 advisory. - TYPO3 is an open source PHP...

4.3CVSS5.1AI score0.00548EPSS
Exploits0References2
Rows per page
Query Builder