Description

Open redirect vulnerability in the OpenID extension in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Remediation

References

CVE-2013-7079

Related Vulnerabilities

PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-21967)

phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8960)

Telerik Web UI Missing Authorization Vulnerability (CVE-2021-28141)

Liferay Portal Insufficient Session Expiration Vulnerability (CVE-2021-33322)

WordPress Plugin Cool Video Gallery Cross-Site Request Forgery (1.8)

Severity

Medium

Classification

CVE-2013-7079 CWE-20

Tags

Missing Update Known Vulnerabilities