Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
typo3 typo3 10.4.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-11063
In TYPO3 CMS versions 10.4.0 and 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users. This allows an malicious user to mount user enumeration based on email addresses assigned to backend user accounts. This ha...
Typo3 Typo3 10.4.0
Typo3 Typo3 10.4.1
6
CVSSv2
CVE-2020-11067
In TYPO3 CMS 9.0.0 up to and including 9.5.16 and 10.0.0 up to and including 10.4.1, it has been discovered that backend user settings (in $BE_USER->uc) are vulnerable to insecure deserialization. In combination with vulnerabilities of third party components, this can lead to ...
Typo3 Typo3
6.8
CVSSv2
CVE-2020-11069
In TYPO3 CMS 9.0.0 up to and including 9.5.16 and 10.0.0 up to and including 10.4.1, it has been discovered that the backend user interface and install tool are vulnerable to a same-site request forgery. A backend user can be tricked into interacting with a malicious resource an ...
Typo3 Typo3
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started