CVE-2014-6236

2014-09-1114:00:00

mitre

www.cve.org

AI Score

7.4

Confidence

Low

EPSS

0.091

Percentile

94.7%

JSON

Unspecified vulnerability in the LumoNet PHP Include (lumophpinclude) extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary scripts via vectors related to extension links.

References

secunia.com/advisories/60873

typo3.org/extensions/repository/view/lumophpinclude

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-010

www.securityfocus.com/bid/69569

exchange.xforce.ibmcloud.com/vulnerabilities/95707