Unrated severityNVD Advisory· Published Feb 22, 2010· Updated Jun 16, 2026

CVE-2010-0286

Description

Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities during authentication.

Affected products

TYPO3/Typo3
cpe:2.3:a:typo3:typo3:4.3.0:*:*:*:*:*:*:*
TYPO3/OpenID Identity Authenticationllm-fuzzy
Range: =4.3.0

Patches

Vulnerability mechanics

References

www.vupen.com/english/advisories/2010/0127nvdPatchVendor Advisory
secunia.com/advisories/38206nvdVendor Advisory
typo3.org/teams/security/security-bulletins/typo3-sa-2010-001/nvdVendor Advisory
osvdb.org/61680nvd
exchange.xforce.ibmcloud.com/vulnerabilities/55609nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000