Vulnerabilities > CVE-2013-4680 - Unspecified vulnerability in URS Maag Form Captcha
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Open redirect vulnerability in Maag Form Captcha extension 2.0.0 and earlier for TYPO3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Vulnerable Configurations
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 60298 CVE(CAN) ID: CVE-2013-4680 Typo3是开源内容管理系统(CMS)和内容管理框架(CMF)。 TYPO3的Maag Form Captcha 2.0.0及更早版本存在开放重定向漏洞,攻击者利用此漏洞可将用户重定向到任意网站并执行钓鱼攻击。 0 TYPO3 Maag Form Captcha <= 2.0.0 厂商补丁: TYPO3 ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://typo3.org/extensions/repository/ |
| id | SSV:60858 |
| last seen | 2017-11-19 |
| modified | 2013-06-27 |
| published | 2013-06-27 |
| reporter | Root |
| title | TYPO3 Maag Form Captcha开放重定向漏洞 |
References
- http://osvdb.org/93818
- http://osvdb.org/93818
- http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-007/
- http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-007/
- http://www.securityfocus.com/bid/60298
- http://www.securityfocus.com/bid/60298
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84670
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84670