VulnerableCode Package Details - pkg:composer/typo3/cms@7.6.15

Search for packages

Vulnerability	Summary	Fixed by
VCID-5b39-566a-63b7 Aliases: CVE-2017-6370 GHSA-87hc-phmj-rhgh	TYPO3 Information Disclosure Vulnerability TYPO3 7.6.15 sends an http request to an index.php?loginProvider URI in cases with an https Referer, which allows remote attackers to obtain sensitive cleartext information by sniffing the network and reading the userident and username fields.	7.6.16 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-5b39-566a-63b7
Aliases:
CVE-2017-6370
GHSA-87hc-phmj-rhgh

TYPO3 Information Disclosure Vulnerability TYPO3 7.6.15 sends an http request to an index.php?loginProvider URI in cases with an https Referer, which allows remote attackers to obtain sensitive cleartext information by sniffing the network and reading the userident and username fields.

7.6.16
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2m7w-zfua-u7b9	TYPO3 Remote Code Execution in third party library swiftmailer TYPO3 uses the package swiftmailer/swiftmailer for mail actions. This package is known to be vulnerable to Remote Code Execution.	GHSA-g4pf-3jvq-2gcw
VCID-htsn-wq8h-qbgp	Code Injection Remote Code Execution in third party library swiftmailer.	2017-01-03-1

Vulnerability

Summary

Aliases

VCID-2m7w-zfua-u7b9

TYPO3 Remote Code Execution in third party library swiftmailer TYPO3 uses the package swiftmailer/swiftmailer for mail actions. This package is known to be vulnerable to Remote Code Execution.

GHSA-g4pf-3jvq-2gcw

VCID-htsn-wq8h-qbgp

Code Injection Remote Code Execution in third party library swiftmailer.

2017-01-03-1

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-03T13:56:51.956085+00:00	GitLab Importer	Fixing	VCID-2m7w-zfua-u7b9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/GHSA-g4pf-3jvq-2gcw.yml	36.1.3
2025-07-01T18:10:22.344883+00:00	GitLab Importer	Affected by	VCID-5b39-566a-63b7	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/CVE-2017-6370.yml	36.1.3
2025-07-01T18:10:19.969622+00:00	GitLab Importer	Fixing	VCID-htsn-wq8h-qbgp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/typo3/cms/2017-01-03-1.yml	36.1.3
2025-07-01T14:35:05.864230+00:00	GHSA Importer	Fixing	VCID-2m7w-zfua-u7b9	https://github.com/advisories/GHSA-g4pf-3jvq-2gcw	36.1.3
2025-07-01T14:32:34.278491+00:00	GHSA Importer	Affected by	VCID-5b39-566a-63b7	https://github.com/advisories/GHSA-87hc-phmj-rhgh	36.1.3
2025-07-01T12:10:58.168882+00:00	GithubOSV Importer	Fixing	VCID-2m7w-zfua-u7b9	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/06/GHSA-g4pf-3jvq-2gcw/GHSA-g4pf-3jvq-2gcw.json	36.1.3