Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The creating record functionality in Extension table administration library (feuser_adminLib.inc) in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, and 6.0.0 through 6.0.11 allows remote attackers to write to arbitrary fields in the configuration database table via crafted links, aka "Mass Assignment."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TYPO3 Extension表管理库安全漏洞
Vulnerability Description
TYPO3是瑞士TYPO3协会维护的一套免费开源的内容管理系统(框架)(CMS/CMF)。Extension table administration library是其中的一个扩展表管理库。 TYPO3的Extension表管理库(feuser_adminLib.inc)的creating record功能中存在安全漏洞。远程攻击者可借助特制的链接利用该漏洞在配置数据库表中写入任意字段。以下版本受到影响:TYPO3 4.5.0至4.5.31版本,4.7.0至4.7.16版本,6.0.0至6.0.11版本
CVSS Information
N/A
Vulnerability Type
N/A