Description
Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities during authentication.
Remediation
References
Related Vulnerabilities
MySQL CVE-2015-4864 Vulnerability (CVE-2015-4864)
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19595)
PostgreSQL Insufficient Verification of Data Authenticity Vulnerability (CVE-2024-10977)
WordPress Plugin Post to CSV by BestWebSoft CSV Injection (1.4.0)
WordPress Plugin JSON API User Unspecified Vulnerability (3.9.6)