Описание
TYPO3 Reveals Sensitive Information via Direct Request to misc/phpcheck/
TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive information via a direct request to misc/phpcheck/, which invokes the phpinfo function and prints values of unspecified environment variables.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-4875
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42457
- https://web.archive.org/web/20080228231555/http://typo3.org/teams/security/security-bulletins/typo3-20050725-1
- http://bugs.typo3.org/view.php?id=1250
- http://typo3.org/teams/security/security-bulletins/typo3-20050725-1
Пакеты
typo3/cms
< 3.8.1
3.8.1
Связанные уязвимости
TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive information via a direct request to misc/phpcheck/, which invokes the phpinfo function and prints values of unspecified environment variables.
TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive information via a direct request to misc/phpcheck/, which invokes the phpinfo function and prints values of unspecified environment variables.
TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive in ...