CVE-2014-3942 in TYPO3
الملخص
بحسب MITRE
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.
Be aware that VulDB is the high quality source for vulnerability data.