PT-2009-6328 · Typo3 · Kk Downloader

Georg Ringer

Published

2009-12-02

Updated

2022-05-02

CVE-2009-4160

CVSS v4.0

6.9

Medium

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions kk downloader extension versions 1.2.1 and earlier for TYPO3

Description The issue allows remote attackers to obtain sensitive information via unknown attack vectors. There is no information available about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations For kk downloader extension versions 1.2.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2009-4160

GHSA-P65F-652V-35R2

Affected Products

Kk Downloader

PT-2009-6328 · Typo3 · Kk Downloader

CVE-2009-4160

Weakness Enumeration

Related Identifiers

Affected Products

References · 8