Description

Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities during authentication.

Remediation

References

CVE-2010-0286

Related Vulnerabilities

WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress SQL Injection (1.0.10)

WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97)

WordPress Plugin Data Tables Generator by Supsystic Cross-Site Scripting (1.10.0)

WordPress Plugin GiveWP-Donation and Fundraising Platform SQL Injection (2.24.0)

Oracle Application Server CVE-2007-5516 Vulnerability (CVE-2007-5516)

Severity

Medium

Classification

CVE-2010-0286

Tags

Missing Update Known Vulnerabilities