← back
CVE-2014-8328

CVE-2014-8328

EPSS 1.6%
The default configuration in the Dynamic Content Elements (dce) extension before 0.11.5 for TYPO3 allows remote attackers to obtain sensitive installation environment information by reading the update check request.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/97673http://typo3.org/extensions/repository/view/dcehttp://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-015/