Description
The query caching functionality in the Extbase Framework component in TYPO3 6.2.0 before 6.2.3 does not properly validate group permissions, which allows remote authenticated users to read arbitrary queries via unspecified vectors.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2020-16941 Vulnerability (CVE-2020-16941)
WordPress Plugin WordPress Mega Menu-QuadMenu Remote Code Execution (2.0.6)
WordPress 3.8.x Cross-Site Request Forgery (3.8 - 3.8.28)
WordPress Plugin Page Animations And Transitions Unspecified Vulnerability (2.1.8)
WordPress Plugin Related YouTube Videos Cross-Site Request Forgery (1.9.8)