Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2022/12/17 12:0 a.m.33 views

FreeBSD : typo3 -- multiple vulnerabilities (d9e154c9-7de9-11ed-adca-080027d3a315)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the d9e154c9-7de9-11ed-adca-080027d3a315 advisory. - HTML sanitizer is written in PHP, aiming to provide XSS-safe markup based on explicitly...

8.8CVSS5.8AI score0.00785EPSS
Exploits0References8
CVE
CVE
added 2022/12/14 7:34 a.m.122 views

CVE-2022-23502

TYPO3 contains an Insufficient Session Expiration after Password Reset vulnerability (CVE-2022-23502). The issue affects TYPO3 core versions prior to 10.4.33, 11.5.20, and 12.1.1, where password-reset sessions for a user account were not revoked for both frontend and backend sessions. The vulnera...

5.4CVSS5.8AI score0.004EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/14 7:34 a.m.6 views

CVE-2022-23502 TYPO3 contains Insufficient Session Expiration after Password Reset

TYPO3 is an open source PHP based web content management system. In versions prior to 10.4.33, 11.5.20, and 12.1.1, When users reset their password using the corresponding password recovery functionality, existing sessions for that particular user account were not revoked. This applied to both...

5.4CVSS5.5AI score0.004EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/12/13 12:0 a.m.25 views

TYPO3 10.0.0 < 10.4.33 / 11.0.0 < 11.5.20 / 12.0.0 < 12.1.1 (TYPO3-CORE-SA-2022-014)

The version of TYPO3 installed on the remote host is prior to 10.0.0 10.4.33 / 11.0.0 11.5.20 / 12.0.0 12.1.1. It is, therefore, affected by a vulnerability as referenced in the TYPO3-CORE-SA-2022-014 advisory. - When users reset their password using the corresponding password recovery...

5.4CVSS5.7AI score0.004EPSS
Exploits0References2
Rows per page
Query Builder