CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-28917

An issue was discovered in the view_statistics (aka View frontend statistics) extension before 2.0.1 for TYPO3. It saves all GET and POST data of TYPO3 frontend requests to the database. Depending on the extensions used on a TYPO3 website, sensitive data (e.g., cleartext passwords if ext:felogin is installed) may be saved.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 36.8%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2020-28917

View Frontend Statistics Project » View Frontend Statistics » Version: 1.0.0

cpe:2.3:a:view_frontend_statistics_project:view_frontend_statistics:1.0.0
View Frontend Statistics Project » View Frontend Statistics » Version: 1.0.1

cpe:2.3:a:view_frontend_statistics_project:view_frontend_statistics:1.0.1
View Frontend Statistics Project » View Frontend Statistics » Version: 1.0.2

cpe:2.3:a:view_frontend_statistics_project:view_frontend_statistics:1.0.2
View Frontend Statistics Project » View Frontend Statistics » Version: 2.0.0

cpe:2.3:a:view_frontend_statistics_project:view_frontend_statistics:2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-28917

Products

Pricing

Contact Us