CVE-2013-7080 in TYPO3info

Summary

The creating record functionality in Extension table administration library (feuser_adminLib.inc) in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, and 6.0.0 through 6.0.11 allows remote attackers to write to arbitrary fields in the configuration database table via crafted links, aka "Mass Assignment."

Reservation

12/11/2013

Disclosure

12/23/2013

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
11488TYPO3 Table Administration feuser_adminLib.inc security check358Not definedOfficial fixCVE-2013-7080

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!