Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
typo3TYPO3 AssociationTYPO3-EXT-SA-2020-005
HistoryMay 12, 2020 - 12:00 a.m.

Multiple vulnerabilities in extension "Direct Mail" (direct_mail)

2020-05-1200:00:00
TYPO3 Association
typo3.org
25

0.001 Low

EPSS

Percentile

42.6%

JSON

Denial of Service (CVE-2020-12697)
The extension provides a functionality to log clicks on links in sent newsletters. This functionality does not limit the amount of log entries generated per link, so it is possible to use a valid link to fill the log table with a huge amount of records.

CPENameOperatorVersion
direct_maille5.2.3

Related

osv 4
github 4
cvelist 4
veracode 4
nvd 4
cve 4
prion 4
osv
osv
Missing Authorization in TYPO3 extension
2021-07-26 21:34:58
Open redirect in direct_mail
2021-05-24 16:58:37
Denial of service in direct_mail
2021-05-24 16:58:32
github
github
Missing Authorization in TYPO3 extension
2021-07-26 21:34:58
Denial of service in direct_mail
2021-05-24 16:58:32
Open redirect in direct_mail
2021-05-24 16:58:37
cvelist
cvelist
CVE-2020-12700
2020-05-13 12:43:23
CVE-2020-12698
2020-05-13 12:41:58
CVE-2020-12697
2020-05-13 12:40:55
veracode
veracode
Information Disclosure
2021-07-28 05:01:07
Denial Of Service (DoS)
2021-05-25 07:02:06
Insecure Access Control
2021-07-28 04:55:23
nvd
nvd
CVE-2020-12700
2020-05-13 13:15:14
CVE-2020-12699
2020-05-13 13:15:14
CVE-2020-12698
2020-05-13 13:15:14
cve
cve
CVE-2020-12700
2020-05-13 13:15:14
CVE-2020-12698
2020-05-13 13:15:14
CVE-2020-12697
2020-05-13 13:15:14
prion
prion
Information disclosure
2020-05-13 13:15:00
Design/Logic Flaw
2020-05-13 13:15:00
Open redirect
2020-05-13 13:15:00

0.001 Low

EPSS

Percentile

42.6%

JSON
Related for TYPO3-EXT-SA-2020-005
osv4github4cvelist4veracode4nvd4cve4prion4