← voltar
CVE-2010-3663

CVE-2010-3663

EPSS 2.4%
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 contains an insecure default value of the variable fileDenyPattern which could allow remote attackers to execute arbitrary code on the backend.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=590719https://security-tracker.debian.org/tracker/CVE-2010-3663https://typo3.org/security/advisory/typo3-sa-2010-012/#Arbitrary_Code_Execution