The jumpUrl mechanism in class.tslib_fe.php in TYPO3 3.3.x up to and including 3.8.x, 4.0 prior to 4.0.12, 4.1 prior to 4.1.10, 4.2 prior to 4.2.6, and 4.3alpha1 leaks a hash secret (juHash) in an error message, which allows remote malicious users to read arbitrary files by including the hash in a request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
typo3 typo3 4.1.4 |
||
typo3 typo3 4.1.5 |
||
typo3 typo3 4.1.6 |
||
typo3 typo3 4.1.7 |
||
typo3 typo3 3.6.x |
||
typo3 typo3 3.8.x |
||
typo3 typo3 4.0 |
||
typo3 typo3 4.1 |
||
typo3 typo3 4.2.3 |
||
typo3 typo3 4.2.4 |
||
typo3 typo3 4.2.5 |
||
typo3 typo3 4.3 |
||
typo3 typo3 3.7.x |
||
typo3 typo3 4.1.0 |
||
typo3 typo3 4.1.3 |
||
typo3 typo3 4.1.8 |
||
typo3 typo3 4.2.0 |
||
typo3 typo3 4.2.2 |
||
typo3 typo3 3.3.x |
||
typo3 typo3 3.5.x |
||
typo3 typo3 4.2 |
||
typo3 typo3 4.1.2 |
||
typo3 typo3 4.1.9 |
||
typo3 typo3 4.2.1 |