Security
Headlines

Headlines Latest CVEs

Headline

GHSA-wj85-rg5g-v8jm: TYPO3 Information Disclosure in User Authentication

It has been discovered that login failures have been logged on the default stream with log level “warning” including plain-text user credentials.

7 months ago

#vulnerability #git #auth

Skip to content

Navigation Menu

- Actions
  
  Automate any workflow
- Packages
  
  Host and manage packages
- Security
  
  Find and fix vulnerabilities
- Codespaces
  
  Instant dev environments
- Copilot
  
  Write better code with AI
- Code review
  
  Manage code changes
- Issues
  
  Plan and track work
- Discussions
  
  Collaborate outside of code

- GitHub Sponsors
  
  Fund open source developers

*   The ReadME Project
    
    GitHub community articles

Pricing

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

GitHub Advisory Database
GitHub Reviewed
GHSA-wj85-rg5g-v8jm

TYPO3 Information Disclosure in User Authentication

Moderate severity GitHub Reviewed Published May 30, 2024 to the GitHub Advisory Database • Updated May 30, 2024

Package

composer typo3/cms-core (Composer)

Affected versions

>= 9.0.0, < 9.5.6

Description

Published to the GitHub Advisory Database

May 30, 2024

Last updated

May 30, 2024

ghsa: Latest News

GHSA-675f-rq2r-jw82: JWK Set's HTTP client only overwrites and appends JWK to local cache during refresh

1 hour ago

GHSA-7w6r-748w-mh52: pgAdmin has Incorrect Default Permissions

9 hours ago

GHSA-q8fg-cp3q-5jwm: Mattermost Incorrect Authorization vulnerability

9 hours ago

GHSA-6gf2-ffq8-gcww: GHSL-2024-288: SickChill open redirect in login

20 hours ago

GHSA-j3f9-p6hm-5w6q: Carbon has an arbitrary file include via unvalidated input passed to Carbon::setLocale

21 hours ago