Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
TYPO3 Permissions Privileges and Access Controls Vulnerability - CVE-2012-6146 - Vulnerability Database
TYPO3

TYPO3 Permissions Privileges and Access Controls Vulnerability - CVE-2012-6146

Medium
Reference: CVE-2012-6146
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-6146
Title: TYPO3 Permissions Privileges and Access Controls Vulnerability
Overview:

The Backend History Module in TYPO3 4.5.x before 4.5.21 4.6.x before 4.6.14 and 4.7.x before 4.7.6 does not properly restrict access which allows remote authenticated editors to read the history of arbitrary records via a crafted URL.