Description
The Command Line Interface (CLI) script in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allows remote attackers to obtain the database name via a direct request.
Remediation
References
Related Vulnerabilities
MySQL CVE-2013-1532 Vulnerability (CVE-2013-1532)
WordPress Plugin NextGEN Gallery-WordPress Gallery Unspecified Vulnerability (2.2.46)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606)
WordPress Plugin JS MultiHotel Cross-Site Scripting (2.2.1)
WordPress Plugin Booking Package-Appointment Booking Calendar System Cross-Site Scripting (1.5.10)