CVE-2013-7073 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2013-7073 Interim 1 7 2025-04-12T23:28:44Z current 2021-05-30T13:16:45Z 2025-04-12T23:28:44Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2013-7073 The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/56GGDCISUYOFOKVR25PT5XWK6ESHNE3X/#56GGDCISUYOFOKVR25PT5XWK6ESHNE3X E-Mail link for openSUSE-SU-2016:2025-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated editors to read arbitrary TYPO3 table columns via unspecified parameters. CVE-2013-7073 low 4 AV:N/AC:L/Au:S/C:P/I:N/A:N