Headline

GHSA-53mm-hx32-6475: TYPO3 vulnerable to Insufficient Session Expiration

An issue was discovered in the fe_change_pwd (aka Change password for frontend users) extension before 2.0.5, and 3.x before 3.0.3, for TYPO3. The extension fails to revoke existing sessions for the current user when the password has been changed.

1 year ago

ghsa

Open in Source

#git

TYPO3 vulnerable to Insufficient Session Expiration

Critical severity GitHub Reviewed Published Dec 14, 2022 • Updated Dec 19, 2022

1 year ago

CVE

Open in Source

#vulnerability

ghsa: Latest News

GHSA-mj5r-x73q-fjw6: SPEmailHandler-PHP has Potential Abuse for Sending Arbitrary Emails

1 day ago

ghsa

GHSA-jwcm-9g39-pmcw: Recursive repository cloning can leak authentication tokens to non-GitHub submodule hosts

1 day ago

ghsa

GHSA-55v3-xh23-96gh: `auth.TokenForHost` violates GitHub host security boundary when sourcing authentication token within a codespace

1 day ago

ghsa

GHSA-j6vm-4r7g-x4gr: Devolutions.XTS.NET Vulnerable to Timing Attack on GF Multiplications

1 day ago

ghsa

GHSA-6q3q-6v5j-h6vg: Querydsl vulnerable to HQL injection trough orderBy

1 day ago

ghsa

Headline

GHSA-53mm-hx32-6475: TYPO3 vulnerable to Insufficient Session Expiration

Related news

ghsa: Latest News