Typo3 : Security Vulnerabilities, CVEs, Published In October 2010
CVE-2010-3714
Public exploit
The jumpUrl (aka access tracking) implementation in tslib/class.tslib_fe.php in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly compare certain hash values during access-control decisions, which allows remote attackers to read arbitrary files via unspecified vectors.
Max CVSS
7.1
EPSS Score
8.52%
Published
2010-10-25
Updated
2012-06-01
1 vulnerabilities found