Description

TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allows remote attackers to have unspecified impact via a crafted HTTP Host header, related to "Host Spoofing."

Remediation

References

CVE-2014-3941

Related Vulnerabilities

Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.5)

phpBB Improper Input Validation Vulnerability (CVE-2019-9826)

Internet Information Services CVE-2002-1790 Vulnerability (CVE-2002-1790)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14724)

Oracle Application Server Other Vulnerability (CVE-2007-2122)

Severity

Medium

Classification

CVE-2014-3941 CWE-20

Tags

Missing Update Known Vulnerabilities