Description
The Command Line Interface (CLI) script in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allows remote attackers to obtain the database name via a direct request.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2006-4433)
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.5.30)
Jboss EAP Improper Authentication Vulnerability (CVE-2011-4085)
PostgreSQL Other Vulnerability (CVE-2002-1657)
WordPress Plugin Blog Designer Cross-Site Scripting (1.8.11)