Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
TYPO3 Permissions Privileges and Access Controls Vulnerability - CVE-2012-6146 - Vulnerability Database
TYPO3

TYPO3 Permissions Privileges and Access Controls Vulnerability - CVE-2012-6146

Medium
Reference: CVE-2012-6146
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-6146
Title: TYPO3 Permissions Privileges and Access Controls Vulnerability
Overview:

The Backend History Module in TYPO3 4.5.x before 4.5.21 4.6.x before 4.6.14 and 4.7.x before 4.7.6 does not properly restrict access which allows remote authenticated editors to read the history of arbitrary records via a crafted URL.