Description
TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows Information Disclosure on the backend.
Remediation
References
Related Vulnerabilities
WordPress Plugin MailPoet Newsletters (Previous) Security Bypass (2.8.1)
Dolibarr Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-17898)
WordPress Plugin Gallery by BestWebSoft Cross-Site Scripting (4.4.9)
Drupal Other Vulnerability (CVE-2006-1227)
TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4614)