Lucene search
TYPO3 AssociationTYPO3-CORE-SA-2021-006HistoryMar 16, 2021 - 12:00 a.m.
Cleartext storage of session identifier
2021-03-1600:00:00
TYPO3 Association
typo3.org
34
0.002 Low
EPSS
Percentile
53.7%
User session identifiers were stored in cleartext - without processing of additional cryptographic hashing algorithms. This vulnerability cannot be exploited directly and occurs in combination with a chained attack - like for instance SQL injection in any other component of the system.
Related
cve
cve
CVE-2021-21339
2021-03-23 02:15:12
osv
osv
Cleartext storage of session identifier
2021-03-23 01:53:42
CVE-2021-21339
2021-03-23 02:15:12
BIT-typo3-2021-21339
2024-03-06 11:11:19
cvelist
cvelist
CVE-2021-21339 Cleartext storage of session identifier
2021-03-23 01:50:40
nvd
nvd
CVE-2021-21339
2021-03-23 02:15:12
friendsofphp
friendsofphp
TYPO3-CORE-SA-2021-006: Cleartext storage of session identifier
2021-03-16 08:58:23
TYPO3-CORE-SA-2021-006: Cleartext storage of session identifier
2021-03-16 08:58:23
github
github
Cleartext storage of session identifier
2021-03-23 01:53:42
prion
prion
Sql injection
2021-03-23 02:15:00
veracode
veracode
Information Disclosure
2021-03-24 05:08:47
openvas
openvas