ID de Prueba:	1.3.6.1.4.1.25623.1.0.804203
Categoría:	Web application abuses
Título:	TYPO3 Multiple Vulnerabilities (Mar 2013)
Resumen:	TYPO3 is prone to multiple vulnerabilities.
Descripción:	Summary: TYPO3 is prone to multiple vulnerabilities. Vulnerability Insight: Multiple errors exist in the application: - An error exists in Extbase Framework, which fails to sanitize user input properly. - An error exists in the access tracking mechanism, which fails o validate user provided input. Vulnerability Impact: Successful exploitation will allow remote attackers to get sensitive information or execute SQL commands. Affected Software/OS: TYPO3 version 4.5.0 up to 4.5.23, 4.6.0 up to 4.6.16, 4.7.0 up to 4.7.8 and 6.0.0 up to 6.0.2 Solution: Upgrade to TYPO3 version 4.5.24, 4.6.17, 4.7.9 or 6.0.3 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-1842 BugTraq ID: 58330 http://www.securityfocus.com/bid/58330 Debian Security Information: DSA-2646 (Google Search) http://www.debian.org/security/2013/dsa-2646 http://www.openwall.com/lists/oss-security/2013/03/12/3 http://osvdb.org/90925 http://secunia.com/advisories/52433 http://secunia.com/advisories/52638 SuSE Security Announcement: openSUSE-SU-2013:0510 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-03/msg00079.html Common Vulnerability Exposure (CVE) ID: CVE-2013-1843 http://www.osvdb.org/90924
Copyright	Copyright (C) 2014 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.