User Credential Exposure in TYPO3 Front End User Registration Extension

User Credential Exposure in TYPO3 Front End User Registration Extension

CVE-2012-5890 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Front End User Registration (sr_feuser_register) extension before 2.6.2 for TYPO3 allows remote attackers to obtain user names and passwords via the (1) edit perspective or (2) autologin feature.

Learn more about our User Device Pen Test.