Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
TYPO3 Improper Authentication Vulnerability - CVE-2014-3945 - Vulnerability Database
TYPO3

TYPO3 Improper Authentication Vulnerability - CVE-2014-3945

Medium
Reference: CVE-2014-3945
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-3945
Title: TYPO3 Improper Authentication Vulnerability
Overview:

The Authentication component in TYPO3 before 6.2 when salting for password hashing is disabled does not require knowledge of the cleartext password if the password hash is known which allows remote attackers to bypass authentication and gain access to the backend by leveraging knowledge of a password hash.