../ Information Disclosure (at) DFN (Deutsches Forschungsnetz)


2024-02-01 CVSS 4 pending

A misconfigured instance of Typo3 is leaking environment-variables and various information throughout a openly accessable stack-trace (exception handler).

Patch: Disable error logging in Typo3


PoC

ENCRYPTED