Vulnerability Details CVE-2012-5890
The Front End User Registration (sr_feuser_register) extension before 2.6.2 for TYPO3 allows remote attackers to obtain user names and passwords via the (1) edit perspective or (2) autologin feature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 68.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://forge.typo3.org/projects/extension-sr_feuser_register/repository/entry/trunk/ChangeLog
- http://forge.typo3.org/projects/extension-sr_feuser_register/repository/revisions/58720
- http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-002/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80145
- http://forge.typo3.org/projects/extension-sr_feuser_register/repository/entry/trunk/ChangeLog
- http://forge.typo3.org/projects/extension-sr_feuser_register/repository/revisions/58720
- http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-002/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80145
Products affected by CVE-2012-5890
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:1.4.7
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:1.6.5
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:1.6.6
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:1.6.7
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:1.6.8
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.0.0
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.1.0
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.0
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.1
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.3
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.4
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.2.5
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.3.0
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.3.3
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.3.4
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.3.5
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.3.6
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.4
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.1
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.11
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.12
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.13
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.14
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.15
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.16
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.17
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.19
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.2
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.3
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.4
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.5
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.5.6
-
cpe:2.3:a:stanislas_rolland:sr_feuser_register:2.6.1
-
cpe:2.3:a:typo3:typo3:-