Description

TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allows remote attackers to have unspecified impact via a crafted HTTP Host header, related to "Host Spoofing."

Remediation

References

CVE-2014-3941

Related Vulnerabilities

WordPress Plugin WP Popups-WordPress Popup builder Cross-Site Scripting (2.1.4.6)

WordPress Plugin WP Whois Domain Cross-Site Scripting (1.0.0)

WordPress Plugin JS MultiHotel Cross-Site Scripting (2.2.1)

Oracle Database Server CVE-2004-2345 Vulnerability (CVE-2004-2345)

WordPress Plugin twimp-wp-twitter multi publisher Cross-Site Request Forgery (0.1)

Severity

Medium

Classification

CVE-2014-3941 CWE-20

Tags

Missing Update Known Vulnerabilities