Description

Contao 4.7 allows Use of a Key Past its Expiration Date.

Remediation

References

CVE-2019-10643

Related Vulnerabilities

CubeCart Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3724)

WordPress Plugin Product Subtitle For WooCommerce Arbitrary File Disclosure (4.1)

WordPress Plugin TwitterCart Security Bypass (2.0)

SharePoint Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-1443)

phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-16107)

Severity

Critical

Classification

CVE-2019-10643 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities