CVE-2014-9508 in TYPO3
요약 (영어)
The frontend rendering component in TYPO3 4.5.x before 4.5.39, 4.6.x through 6.2.x before 6.2.9, and 7.x before 7.0.2, when config.prefixLocalAnchors is set and using a homepage with links that only contain anchors, allows remote attackers to change URLs to arbitrary domains for those links via unknown vectors.
예약하다
2015. 01. 04.
공개
2015. 01. 04.
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 73492 | TYPO3 권한 상승 | 59 | 정의되지 않음 | 정의되지 않음 | CVE-2014-9508 |
| 68438 | TYPO3 Cache 권한 상승 | 59 | 입증되지 않음 | 공식 수정 | CVE-2014-9508 |