Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The jumpUrl mechanism in class.tslib_fe.php in TYPO3 3.3.x through 3.8.x, 4.0 before 4.0.12, 4.1 before 4.1.10, 4.2 before 4.2.6, and 4.3alpha1 leaks a hash secret (juHash) in an error message, which allows remote attackers to read arbitrary files by including the hash in a request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TYPO3 class.tslib_fe.php jumpUrl机制信息泄露漏洞
Vulnerability Description
TYPO3是TYPO3.org项目组开发的一个免费的CMS架构。 TYPO3 3.3.x至3.8.x,4.0.12之前的4.0,4.1.10之前的4.1,4.2.6之前的4.2和4.3alpha1版本的class.tslib_fe.php中的jumpUrl机制在错误信息中缺少哈希密码(juHash)。远程攻击者可通过包含请求中的哈希信息读取任意文件。
CVSS Information
N/A
Vulnerability Type
N/A