Description
TYPO3 7.6.15 sends an http request to an index.php?loginProvider URI in cases with an https Referer, which allows remote attackers to obtain sensitive cleartext information by sniffing the network and reading the userident and username fields.
Exploits (1)
nomisec
WRITEUP
2 stars
by faizzaidi · poc
https://github.com/faizzaidi/TYPO3-v7.6.15-Unencrypted-Login-Request
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/97071
Exploit, Third Party Advisory x_refsource_misc
https://github.com/faizzaidi/TYPO3-v7.6.15-Unencrypted-Login-Request
Scores
CVSS v3
5.3
EPSS
0.0011
EPSS Percentile
29.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-319
Status
published
Products (2)
typo3/cms
Packagist
typo3/typo3
7.6.15
Published
Mar 17, 2017
Tracked Since
Feb 18, 2026