Vulnerability Database
290,020
Total vulnerabilities in the database
TYPO3 Disclosure of Information about Installed Extensions
It has been discovered that mechanisms used for configuration of RequireJS package loading are susceptible to information disclosure. This way a potential attack can retrieve additional information about installed system and third party extensions.
| Software | From | Fixed in |
|---|---|---|
typo3 / cms-core
|
8.0.0 | 8.7.23 |
|
typo3 / cms-core
|
9.0.0 | 9.5.4 |
- https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/2019-01-22-1.yaml
- https://github.com/TYPO3-CMS/core/commit/7960334bba1223a681283158f67a999334e88cf1
- https://github.com/TYPO3-CMS/core/commit/9453d8a8763fffa76deb6a16f6b99c0ab6f3d8f1
- https://typo3.org/security/advisory/typo3-core-sa-2019-001