Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack vectors in which both the attacker and victim have an OpenID provider that discards identities during authentication.

TYPO3 4.3.0中的未指定漏洞使得远程攻击者可以通过未知的攻击路径绕过验证，并访问后端用户账户，其中攻击者和受害者都有一个OpenID provider，在验证过程中丢弃身份。

NVD 暂无评分

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N

NVD 暂无漏洞类别信息

神龙GPT 暂无漏洞类别信息（请耐心等待）