2 matches found
PT-2024-20529 · Typo3 Cms +1 · Typo3/Cms +1
Name of the Vulnerable Software and Affected Versions: sf event mgt versions prior to 7.4.0 Description: The existing access control check for events in the backend module of sf event mgt, an event management and registration extension for the TYPO3 CMS, got broken during the update to TYPO3 12.4...
Elastic Stack 6.8.4 security update
Elasticsearch username disclosure flaw ESA-2019-13 A username disclosure flaw was found in Elasticsearch’s API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm. Affected Versions The following...