CVE-2013-7080: TYPO3 is vulnerable to Mass Assignment in the Extension table administration library
(updated )
The creating record functionality in Extension table administration library (feuser_adminLib.inc) in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, and 6.0.0 through 6.0.11 allows remote attackers to write to arbitrary fields in the configuration database table via crafted links, aka “Mass Assignment.”
References
Code Behaviors & Features
Detect and mitigate CVE-2013-7080 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →