CVE-2009-1264

Frontend User Registration (sr_feuser_register) extension 2.5.20 and earlier for TYPO3 does not properly verify access rights, which allows remote authenticated users to obtain sensitive information such as passwords via unknown attack vectors.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*
OR cpe:2.3:a:stanislas_rolland:sr_feuser_register:*:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:1.4:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:1.6:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.3:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.4:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5:*:*:*:*:*:*:*
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.10:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-04-07 23:30

Updated : 2023-12-10 10:51


NVD link : CVE-2009-1264

Mitre link : CVE-2009-1264

CVE.ORG link : CVE-2009-1264


JSON object : View

Products Affected

stanislas_rolland

  • sr_feuser_register

typo3

  • typo3
CWE
CWE-264

Permissions, Privileges, and Access Controls