CVE-2014-6290

CVE-2014-6290

EPSS 1.3%

The News (tt_news) extension before 3.5.2 for TYPO3 allows remote attackers to have unspecified impact via vectors related to an "insecure unserialize" issue.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://typo3.org/extensions/repository/view/tt_news http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-003/