Description

TYPO3 3.8.0 and earlier allows remote attackers to obtain sensitive information via a direct request to misc/phpcheck/, which invokes the phpinfo function and prints values of unspecified environment variables.

Remediation

References

CVE-2005-4875

Related Vulnerabilities

WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Cross-Site Scripting (1.3.3)

Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0739)

Oracle Application Server Other Vulnerability (CVE-2007-0284)

PostgreSQL Numeric Errors Vulnerability (CVE-2007-6067)

WordPress Plugin Visual Form Builder Multiple Cross-Site Scripting Vulnerabilities (2.8.6)

Severity

High

Classification

CVE-2005-4875 CWE-200

Tags

Missing Update Known Vulnerabilities