Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2025-59018 - Vulnerability Database
TYPO3

TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2025-59018

Medium
Reference: CVE-2025-59018
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-59018
Title: TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Missing authorization checks in the Workspace Module of TYPO3 CMS versions 9.0.09.5.54 10.0.010.4.53 11.0.011.5.47 12.0.012.4.36 and 13.0.013.4.17 allow backend users to directly invoke the corresponding AJAX backend route to disclose sensitive information without having access.