CVE-2014-8874

None

Description

The ke_questionnaire extension 2.5.2 and earlier for TYPO3 uses predictable names for the questionnaire answer forms, which makes it easier for remote attackers to obtain sensitive information via a direct request.

INFO

Published Date :

2014-12-02T16:00:00

Last Modified :

2024-08-06T13:33:11.906Z

Source :

mitre

AFFECTED PRODUCTS

The following products are affected by CVE-2014-8874 vulnerability.

Vendors	Products
Kennziffer	Ke Questionnaire

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2014-8874.

URL	Resource
http://seclists.org/fulldisclosure/2014/Dec/1
http://www.securityfocus.com/archive/1/534126/100/0/threaded
https://www.redteam-pentesting.de/advisories/rt-sa-2014-009

CVSS Vulnerability Scoring System

V2.0

Detailed values of each vector for above chart.

Access Vector

Access Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact