4 matches found
CVE-2020-12697
The directmail extension through 5.2.3 for TYPO3 allows Denial of Service via log entries...
CVE-2020-12697
The directmail extension through 5.2.3 for TYPO3 allows Denial of Service via log entries...
CVE-2020-12697
The CVE-2020-12697 entry affects the TYPO3 Direct Mail extension (direct_mail) up to version 5.2.3. Root cause: a logging mechanism for link clicks has no cap on log entry generation, enabling an attacker to cause excessive log writes and trigger a denial of service. Impact is described as DoS vi...
Multiple vulnerabilities in extension "Direct Mail" (direct_mail)
Denial of Service CVE-2020-12697 The extension provides a functionality to log clicks on links in sent newsletters. This functionality does not limit the amount of log entries generated per link, so it is possible to use a valid link to fill the log table with a huge amount of records...