Main Vulnerability Database SB2017122507

SB2017122507 - Authentication bypass in TYPO3 Frontend User Registration

Published: December 25, 2017

Security Bulletin ID SB2017122507

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Description

This security bulletin contains information about 1 security vulnerability.

1) Authentication bypass (CVE-ID: N/A)

The disclosed vulnerability allows a remote attacker to bypass authentication on the target system.

The vulnerability exists due to improper authentication. A remote attacker can bypass authentication by only knowing the valid user's username.

Install update from vendor's website.