Lucene search
K

5 matches found

OSV
OSV
added 2024/03/06 11:10 a.m.12 views

BIT-TYPO3-2022-23500

TYPO3 is an open source PHP based web content management system. In versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1, requesting invalid or non-existing resources via HTTP triggers the page error handler, which again could retrieve content to be shown as an error message from another page...

7.5CVSS6.3AI score0.00686EPSS
Exploits0References1
NVD
NVD
added 2022/12/14 8:15 a.m.15 views

CVE-2022-23500

TYPO3 is an open source PHP based web content management system. In versions prior to 9.5.38, 10.4.33, 11.5.20, and 12.1.1, requesting invalid or non-existing resources via HTTP triggers the page error handler, which again could retrieve content to be shown as an error message from another page...

7.5CVSS0.00686EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/12/13 12:0 a.m.43 views

TYPO3 9.0.0 < 9.5.38 ELTS / 10.0.0 < 10.4.33 / 11.0.0 < 11.5.20 (TYPO3-CORE-SA-2022-012)

The version of TYPO3 installed on the remote host is prior to 9.0.0 9.5.38 ELTS / 10.0.0 10.4.33 / 11.0.0 11.5.20. It is, therefore, affected by a vulnerability as referenced in the TYPO3-CORE-SA-2022-012 advisory. - Requesting invalid or non-existing resources via HTTP triggers the page error...

7.5CVSS7.1AI score0.01731EPSS
Exploits0References2
OSV
OSV
added 2021/03/23 1:54 a.m.20 views

GHSA-4P9G-QGX9-397P Denial of Service in Page Error Handling

Meta CVSS: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:F/RL:O/RC:C 5.5 CWE-405, CWE-674 Status: DRAFT Problem Requesting invalid or non-existing resources via HTTP triggers the page error handler which again could retrieve content to be shown as error message from another page. This leads to a...

5.9CVSS6.4AI score0.01731EPSS
Exploits0References6
Typo3
Typo3
added 2021/03/16 12:0 a.m.70 views

Denial of Service in Page Error Handling

Requesting invalid or non-existing resources via HTTP triggers the page error handler which again could retrieve content to be shown as an error message from another page. This leads to a scenario in which the application is calling itself recursively - amplifying the impact of the initial attack...

5CVSS2.1AI score0.01731EPSS
Exploits0Affected Software1
Rows per page
Query Builder