Description

The configuration module in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote authenticated backend users to obtain the encryption key via unspecified vectors.

Remediation

References

CVE-2012-3529

Related Vulnerabilities

Atlassian Jira Missing Authorization Vulnerability (CVE-2019-15013)

MySQL CVE-2017-10311 Vulnerability (CVE-2017-10311)

Atlassian Confluence Missing Authorization Vulnerability (CVE-2021-26085)

WordPress Plugin Fontiran Multiple Vulnerabilities (2.1)

MySQL CVE-2022-21604 Vulnerability (CVE-2022-21604)

Severity

Low

Classification

CVE-2012-3529 CWE-200

Tags

Missing Update Known Vulnerabilities