TYPO3 CVE-2013-1843 Open Redirection Vulnerability

TYPO3 is prone to an open-redirection vulnerability because it fails to sufficiently sanitize user-supplied input.

An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link, they may be redirected to an attacker-controlled site; this may aid in phishing attacks. Other attacks are possible.

NOTE: The issue (described by CVE-2013-1842) has been moved to BID 60312 (TYPO3 CVE-2013-1842 SQL Injection Vulnerability) to better document it.


 

Privacy Statement
Copyright 2010, SecurityFocus