GHSA-7gxq-5qqc-v3fc
Suggest an improvement- Source
- https://github.com/advisories/GHSA-7gxq-5qqc-v3fc
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-7gxq-5qqc-v3fc/GHSA-7gxq-5qqc-v3fc.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-7gxq-5qqc-v3fc
- Aliases
-
- CVE-2013-1843
- Published
- 2022-05-17T05:08:47Z
- Modified
- 2023-11-08T03:57:15.450147Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
- Summary
- TYPO3 Open redirect vulnerability in the Access tracking mechanism
- Details
-
Open redirect vulnerability in the Access tracking mechanism in TYPO3 4.5.x before 4.5.24, 4.6.x before 4.6.17, 4.7.x before 4.7.9, and 6.0.x before 6.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
- Database specific
{ "nvd_published_at": "2013-03-20T15:55:00Z", "cwe_ids": [ "CWE-601" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2023-08-28T23:52:28Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2013-1843
- https://github.com/TYPO3-CMS/core
- http://lists.opensuse.org/opensuse-updates/2013-03/msg00079.html
- http://secunia.com/advisories/52433
- http://secunia.com/advisories/52638
- http://typo3.org/support/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/sql-injection-and-open-redirection-in-typo3-core
- http://www.debian.org/security/2013/dsa-2646
- http://www.openwall.com/lists/oss-security/2013/03/12/3
- http://www.osvdb.org/90924
- http://www.securityfocus.com/bid/58330
Affected packages
Packagist / typo3/cms-core
Package
- Name
- typo3/cms-core
- Purl
- pkg:composer/typo3/cms-core
Packagist / typo3/cms-core
Package
- Name
- typo3/cms-core
- Purl
- pkg:composer/typo3/cms-core
Packagist / typo3/cms-core
Package
- Name
- typo3/cms-core
- Purl
- pkg:composer/typo3/cms-core
Packagist / typo3/cms-core
Package
- Name
- typo3/cms-core
- Purl
- pkg:composer/typo3/cms-core