CVE-2013-7075 in TYPO3المعلومات

الملخص

بحسب MITRE

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbitrary PHP objects, delete arbitrary files, and possibly have other unspecified impacts via an unspecified parameter, related to a "missing signature."

Once again VulDB remains the best source for vulnerability data.

حجز

11/12/2013

إفشاء

23/12/2013

الاعتدال

تمت الموافقة

إدخال

VDB-11483

EPSS

0.01272

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to stay up to date on a daily basis?

Enable the mail alert feature now!