CVE-2013-7073

Published: Dec 23, 2013Modified: Apr 29, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters.

Affected (68)

Products: Typo3: Typo3

Typo3

1 product

Typo3

Configuration A

32 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 4.5.0
Typo3 Typo3	Version 4.5.10
Typo3 Typo3	Version 4.5.11
Typo3 Typo3	Version 4.5.12
Typo3 Typo3	Version 4.5.13
Typo3 Typo3	Version 4.5.14
Typo3 Typo3	Version 4.5.15
Typo3 Typo3	Version 4.5.16
Typo3 Typo3	Version 4.5.17
Typo3 Typo3	Version 4.5.18
Typo3 Typo3	Version 4.5.19
Typo3 Typo3	Version 4.5.1
Typo3 Typo3	Version 4.5.20
Typo3 Typo3	Version 4.5.21
Typo3 Typo3	Version 4.5.22
Typo3 Typo3	Version 4.5.23
Typo3 Typo3	Version 4.5.24
Typo3 Typo3	Version 4.5.25
Typo3 Typo3	Version 4.5.26
Typo3 Typo3	Version 4.5.27
Typo3 Typo3	Version 4.5.28
Typo3 Typo3	Version 4.5.29
Typo3 Typo3	Version 4.5.2
Typo3 Typo3	Version 4.5.30
Typo3 Typo3	Version 4.5.31
Typo3 Typo3	Version 4.5.3
Typo3 Typo3	Version 4.5.4
Typo3 Typo3	Version 4.5.5
Typo3 Typo3	Version 4.5.6
Typo3 Typo3	Version 4.5.7
Typo3 Typo3	Version 4.5.8
Typo3 Typo3	Version 4.5.9

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 6.1.1
Typo3 Typo3	Version 6.1.2
Typo3 Typo3	Version 6.1.3
Typo3 Typo3	Version 6.1.4
Typo3 Typo3	Version 6.1.5
Typo3 Typo3	Version 6.1.6
Typo3 Typo3	Version 6.1

Configuration C

12 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 6.0.10
Typo3 Typo3	Version 6.0.11
Typo3 Typo3	Version 6.0.1
Typo3 Typo3	Version 6.0.2
Typo3 Typo3	Version 6.0.3
Typo3 Typo3	Version 6.0.4
Typo3 Typo3	Version 6.0.5
Typo3 Typo3	Version 6.0.6
Typo3 Typo3	Version 6.0.7
Typo3 Typo3	Version 6.0.8
Typo3 Typo3	Version 6.0.9
Typo3 Typo3	Version 6.0

Configuration D

17 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 4.7.0
Typo3 Typo3	Version 4.7.10
Typo3 Typo3	Version 4.7.11
Typo3 Typo3	Version 4.7.12
Typo3 Typo3	Version 4.7.13
Typo3 Typo3	Version 4.7.14
Typo3 Typo3	Version 4.7.15
Typo3 Typo3	Version 4.7.16
Typo3 Typo3	Version 4.7.1
Typo3 Typo3	Version 4.7.2
Typo3 Typo3	Version 4.7.3
Typo3 Typo3	Version 4.7.4
Typo3 Typo3	Version 4.7.5
Typo3 Typo3	Version 4.7.6
Typo3 Typo3	Version 4.7.7
Typo3 Typo3	Version 4.7.8
Typo3 Typo3	Version 4.7.9