Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
typo3 typo3 10.4.1 vulnerabilities and exploits
(subscribe to this query)
3.7
CVSSv3
CVE-2020-11063
In TYPO3 CMS versions 10.4.0 and 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users. This allows an malicious user to mount user enumeration based on email addresses assigned to backend user accounts. This ha...
Typo3 Typo3 10.4.0
Typo3 Typo3 10.4.1
8.8
CVSSv3
CVE-2020-11067
In TYPO3 CMS 9.0.0 up to and including 9.5.16 and 10.0.0 up to and including 10.4.1, it has been discovered that backend user settings (in $BE_USER->uc) are vulnerable to insecure deserialization. In combination with vulnerabilities of third party components, this can lead to ...
Typo3 Typo3
8.8
CVSSv3
CVE-2020-11069
In TYPO3 CMS 9.0.0 up to and including 9.5.16 and 10.0.0 up to and including 10.4.1, it has been discovered that the backend user interface and install tool are vulnerable to a same-site request forgery. A backend user can be tricked into interacting with a malicious resource an ...
Typo3 Typo3
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-3611
CVE-2024-4947
CVE-2024-32988
CVE-2020-35165
local file inclusion
CVE-2024-4980
bypass
malicious code
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started