CVE-2014-3941 in TYPO3
摘要 (英语)
TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, 6.1.0 before 6.1.9, and 6.2.0 before 6.2.3 allows remote attackers to have unspecified impact via a crafted HTTP Host header, related to "Host Spoofing."
预定
2014-06-03
披露
2014-06-03
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 69910 | TYPO3 权限提升 | 20 | 未定义 | 官方修复 | CVE-2014-3941 |
| 13341 | TYPO3 HTTP Header 权限提升 | 20 | 概念验证 | 官方修复 | CVE-2014-3941 |