TYPO3 DAM Frontend Extension Multiple Unspecified Vulnerabilities
BID:30054
Info
TYPO3 DAM Frontend Extension Multiple Unspecified Vulnerabilities
| Bugtraq ID: | 30054 |
| Class: | Unknown |
| CVE: |
CVE-2008-3040 CVE-2008-3041 CVE-2008-3042 CVE-2008-3039 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 01 2008 12:00AM |
| Updated: | Jul 05 2016 10:01PM |
| Credit: | Marc Bastian Heinrichs, Marcus Krause |
| Vulnerable: |
Typo3 DAM Frontend 0.1 |
| Not Vulnerable: | |
Discussion
TYPO3 DAM Frontend Extension Multiple Unspecified Vulnerabilities
The DAM Frontend extension of TYPO3 is prone to multiple vulnerabilities, including an SQL-injection issue, an information-disclosure issue, and multiple unspecified issues.
A successful exploit may allow an attacker to compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, or obtain sensitive information. Other attacks are also possible.
DAM Frontend 0.1.0 and prior versions are affected.
The DAM Frontend extension of TYPO3 is prone to multiple vulnerabilities, including an SQL-injection issue, an information-disclosure issue, and multiple unspecified issues.
A successful exploit may allow an attacker to compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, or obtain sensitive information. Other attacks are also possible.
DAM Frontend 0.1.0 and prior versions are affected.
Exploit / POC
TYPO3 DAM Frontend Extension Multiple Unspecified Vulnerabilities
Attackers can exploit these issues via a browser.
Attackers can exploit these issues via a browser.
Solution / Fix
TYPO3 DAM Frontend Extension Multiple Unspecified Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
TYPO3 DAM Frontend Extension Multiple Unspecified Vulnerabilities
References:
References: