High severityNVD Advisory· Published Mar 19, 2010· Updated Apr 29, 2026
CVE-2010-1022
CVE-2010-1022
Description
The TYPO3 Security - Salted user password hashes (t3sec_saltedpw) extension before 0.2.13 for TYPO3 allows remote attackers to bypass authentication via unspecified vectors.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
typo3/cms-saltedpasswordsPackagist | < 0.2.13 | 0.2.13 |
Affected products
5cpe:2.3:a:marcus_krause:t3sec_saltedpw:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:marcus_krause:t3sec_saltedpw:*:*:*:*:*:*:*:*range: <=0.2.12
- cpe:2.3:a:marcus_krause:t3sec_saltedpw:0.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:marcus_krause:t3sec_saltedpw:0.2.11:*:*:*:*:*:*:*
- cpe:2.3:a:marcus_krause:t3sec_saltedpw:0.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:marcus_krause:t3sec_saltedpw:0.2.9:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- typo3.org/extensions/repository/view/t3sec_saltedpw/0.2.13/nvdPatch
- typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/nvdPatchVendor Advisory
- secunia.com/advisories/38992nvdVendor Advisory
- github.com/advisories/GHSA-cgr9-h9qq-x9fxghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2010-1022ghsaADVISORY
- typo3.org/extensions/repository/view/t3sec_saltedpw/0.2.13ghsaWEB
- typo3.org/teams/security/security-bulletins/typo3-sa-2010-006ghsaWEB
- web.archive.org/web/20101125125343/http://secunia.com/advisories/38992ghsaWEB
- web.archive.org/web/20200228221050/http://www.securityfocus.com/bid/38799ghsaWEB
- www.securityfocus.com/bid/38799nvd
News mentions
0No linked articles in our index yet.