Lucene search
+L

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-1130

Malware in sbrugna...

6.4CVSS6.4AI score0.00474EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:52 a.m.6 views

CVE-2024-25118

TYPO3 is an open source PHP based web content management system released under the GNU GPL. Password hashes were being reflected in the editing forms of the TYPO3 backend user interface. This allowed attackers to crack the plaintext password using brute force techniques. Exploiting this...

6.5CVSS6.8AI score0.0056EPSS
Exploits0References1
Veracode
Veracode
added 2024/06/17 9:18 a.m.11 views

Insecure Credential Storage

TYPO3 is vulnerable to Insecure Credential Storage. The vulnerability is due to the backend form reloading when creating new backend user accounts, potentially persisting records with insecure or empty credentials...

7AI score
Exploits0
OSV
OSV
added 2024/06/07 5:19 p.m.22 views

GHSA-C5MJ-39CF-3PP5 TYPO3 Security Misconfiguration for Backend User Accounts

When using the TYPO3 backend in order to create new backend user accounts, database records containing insecure or empty credentials might be persisted. When the type of user account is changed - which might be entity type or the admin flag for backend users - the backend form is reloaded in orde...

7.3CVSS7.3AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/06/07 5:19 p.m.16 views

TYPO3 Security Misconfiguration for Backend User Accounts

When using the TYPO3 backend in order to create new backend user accounts, database records containing insecure or empty credentials might be persisted. When the type of user account is changed - which might be entity type or the admin flag for backend users - the backend form is reloaded in orde...

7.3AI score
Exploits0References5Affected Software1
OSV
OSV
added 2024/05/30 3:39 p.m.20 views

GHSA-RXC9-F2X6-QH4W TYPO3 Security Misconfiguration for Backend User Accounts

When using the TYPO3 backend in order to create new backend user accounts, database records containing insecure or empty credentials might be persisted. When the type of user account is changed - which might be entity type or the admin flag for backend users - the backend form is reloaded in orde...

7.5CVSS7.3AI score
Exploits0References5
Friends Of PHP
Friends Of PHP
added 2019/01/22 8:41 a.m.8 views

Security Misconfiguration for Backend User Accounts

More info at https://typo3.org/security/advisory/typo3-core-sa-2019-002...

7.2AI score
Exploits0Affected Software1
Typo3
Typo3
added 2019/01/22 12:0 a.m.11 views

Security Misconfiguration for Backend User Accounts

When using the TYPO3 backend in order to create new backend user accounts, database records containing insecure or empty credentials might be persisted. When the type of user account is changed - which might be entity type or the admin flag for backend users - the backend form is reloaded in orde...

6.8AI score
Exploits0Affected Software1
OSV
OSV
added 2010/02/22 1:26 p.m.13 views

UBUNTU-CVE-2010-0286

Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities...

5.1CVSS5.8AI score0.01303EPSS
Exploits0References3
Rows per page
Query Builder