Security Advisory

CVE-2013-7073

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-12-23 23:00:00

Last updated 2024-08-06 17:53:46

Assigner mitre

State PUBLISHED

Description

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters.

← Browse all CVEs View on cve.org ↗