PT-2013-6261 · Typo3 · Typo3

Published

2013-12-23

Updated

2022-05-17

CVE-2013-7079

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions TYPO3 versions 4.5.0 through 4.5.31 TYPO3 versions 4.7.0 through 4.7.16 TYPO3 versions 6.0.0 through 6.0.11 TYPO3 versions 6.1.0 through 6.1.6

Description The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks.

Recommendations For versions 4.5.0 through 4.5.31, update to a version outside of this range to resolve the issue. For versions 4.7.0 through 4.7.16, update to a version outside of this range to resolve the issue. For versions 6.0.0 through 6.0.11, update to a version outside of this range to resolve the issue. For versions 6.1.0 through 6.1.6, update to a version outside of this range to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2013-7079

DSA-2834-1

GHSA-838C-V5CQ-HP33

Affected Products

Typo3

PT-2013-6261 · Typo3 · Typo3

CVE-2013-7079

Weakness Enumeration

Related Identifiers

Affected Products

References · 12