CVE-2013-6285

Published: Oct 28, 2013Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The search component in the Treasurer application in Tyler Technologies TaxWeb 3.13.3.1 allows remote attackers to obtain sensitive query-structure information via an invalid search request, a different vulnerability than CVE-2013-6020.

Affected (1)

Products: Tylertech: Taxweb

Tylertech

1 product

Taxweb

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Tylertech Taxweb	Version 3.13.3.1

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

http://www.kb.cert.org/vuls/id/911678

Source: cve@mitre.org

US Government Resource

http://www.kb.cert.org/vuls/id/911678

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.