Description

The jumpUrl (aka access tracking) implementation in tslib/class.tslib_fe.php in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly compare certain hash values during access-control decisions, which allows remote attackers to read arbitrary files via unspecified vectors.

Remediation

References

CVE-2010-3714

Related Vulnerabilities

Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2020-14174)

WordPress Plugin GigPress Multiple Vulnerabilities (2.3.10)

WordPress Plugin Gantry 4 Framework Cross-Site Scripting (4.1.5)

TYPO3 Improper Authentication Vulnerability (CVE-2022-23501)

WordPress Plugin WP DS FAQ 'ajax.php' SQL Injection (1.3.2)

Severity

High

Classification

CVE-2010-3714 CWE-264

Tags

Missing Update Known Vulnerabilities