2 matches found
CVE-2023-38499
CVE-2023-38499 affects TYPO3 CMS in multi-site setups, where enumerating HTTP query parameters like id and L could disclose content from the frontend. Affected versions are 9.4.0–9.5.41 ELTS, 10.4.38 ELTS, 11.5.29, and 12.4.3; these are fixed in 9.5.42 ELTS, 10.4.39 ELTS, 11.5.30, and 12.4.4. The...
TYPO3 9.4.0 < 9.5.42 ELTS / 10.0.0 < 10.4.39 ELTS / 11.0.0 < 11.5.30 / 12.0.0 < 12.4.4 (TYPO3-CORE-SA-2023-003)
The version of TYPO3 installed on the remote host is prior to 9.4.0 9.5.42 ELTS / 10.0.0 10.4.39 ELTS / 11.0.0 11.5.30 / 12.0.0 12.4.4. It is, therefore, affected by a vulnerability as referenced in the TYPO3-CORE-SA-2023-003 advisory. - In multi-site scenarios, enumerating the HTTP query...