Description
The Command Line Interface (CLI) script in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allows remote attackers to obtain the database name via a direct request.
Remediation
References
Related Vulnerabilities
Django URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-7233)
WordPress Plugin NextMove Lite-Thank You Page for WooCommerce Security Bypass (2.17.0)
WordPress Plugin Tatsu Arbitrary File Upload (3.3.11)
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-23969)