Improper Authentication Checking in TYPO3 Direct Mail Extension (CVE-2021-12345)

Improper Authentication Checking in TYPO3 Direct Mail Extension (CVE-2021-12345)

CVE-2013-7400 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Direct Mail (direct_mail) extension before 3.1.2 for TYPO3 allows remote attackers to obtain sensitive information by leveraging improper checking of authentication codes.

Learn more about our Web Application Penetration Testing UK.