A vulnerability, which was classified as problematic, was found in miniorange_saml Extension up to 1.4.2 on TYPO3. Affected is some unknown functionality of the component API Credential Handler. Upgrading to version 1.4.3 eliminates this vulnerability.
miniorange_saml Extension up to 1.4.2 on TYPO3 API Credential information disclosure
- Virtual Patching
- August 14, 2021
- 7:04 am
Contact us to get started
CVE-2023-3065 : MOBATIME AMXGT100 UP TO 1.3.20 IMPROPER AUTHENTICATION
Description Improper Authentication vulnerability in Mobatime mobile application AMXGT100 allows Authentication Bypass.This issue affects Mobatime mobile application AMXGT100 through 1.3.20.
CVE-2023-2781 : USER EMAIL VERIFICATION FOR WOOCOMMERCE PLUGIN UP TO 3.5.0 ON WORDPRESS IMPROPER AUTHENTICATION
Description The User Email Verification for WooCommerce plugin for WordPress is vulnerable to authentication bypass via authenticate_user_by_email in versions up
CVE-2023-33965 : BROOK PRIOR 20230606 TPROXY SERVER OS COMMAND INJECTION
Description Brook is a cross-platform programmable network tool. The `tproxy` server is vulnerable to a drive-by command injection. An attacker