Back to search
CVE-2020-28917
Published: Nov 18, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
An issue was discovered in the view_statistics (aka View frontend statistics) extension before 2.0.1 for TYPO3. It saves all GET and POST data of TYPO3 frontend requests to the database. Depending on the extensions used on a TYPO3 website, sensitive data (e.g., cleartext passwords if ext:felogin is installed) may be saved.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://typo3.org/security/advisory/typo3-ext-sa-2020-019
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now