Lucene search
TYPO3 AssociationTYPO3-CORE-SA-2020-011HistoryNov 17, 2020 - 12:00 a.m.
Cleartext storage of session identifier
2020-11-1700:00:00
TYPO3 Association
typo3.org
32
0.001 Low
EPSS
Percentile
48.5%
User session identifiers were stored in cleartext - without processing of additional cryptographic hashing algorithms. This vulnerability cannot be exploited directly and occurs in combination with a chained attack - like for instance SQL injection in any other component of the system.
Related
prion
prion
Sql injection
2020-11-23 21:15:00
cvelist
cvelist
CVE-2020-26228 Cleartext storage of session identifier
2020-11-23 21:10:16
friendsofphp
friendsofphp
TYPO3-CORE-SA-2020-011: Cleartext storage of session identifier
2020-11-17 08:50:08
TYPO3-CORE-SA-2020-011: Cleartext storage of session identifier
2020-11-17 08:50:08
osv
osv
Cleartext storage of session identifier
2020-11-23 21:18:36
BIT-typo3-2020-26228
2024-03-06 11:11:34
CVE-2020-26228
2020-11-23 21:15:12
veracode
veracode
Information Disclosure
2020-11-24 06:15:30
nvd
nvd
CVE-2020-26228
2020-11-23 21:15:12
cve
cve
CVE-2020-26228
2020-11-23 21:15:12
github
github
Cleartext storage of session identifier
2020-11-23 21:18:36
openvas
openvas