Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-598P-RV6P-G7QC
HistoryMay 24, 2022 - 4:58 p.m.

sr_freecap for Typo3 RCE Vulnerability

2022-05-2416:58:56
Google
osv.dev
4
sr_freecap
typo3
rce
vulnerability
remote code execution
extbase
arbitrary actions
user input
sanitization

EPSS

0.021

Percentile

89.2%

JSON

The sr_freecap (aka freeCap CAPTCHA) extension 2.4.5 and below and 2.5.2 and below for TYPO3 fails to sanitize user input, which allows execution of arbitrary Extbase actions, resulting in Remote Code Execution.

Related

prion 1
nvd 1
symantec 1
github 1
cve 1
typo3 1
cvelist 1
prion
prion
Remote code execution
2019-10-16 19:15:00
nvd
nvd
CVE-2019-16699
2019-10-16 19:15:15
symantec
symantec
TYPO3 freeCap CAPTCHA Extension CVE-2019-16699 Remote Code Execution Vulnerability
2019-10-15 00:00:00
github
github
sr_freecap for Typo3 RCE Vulnerability
2022-05-24 16:58:56
cve
cve
CVE-2019-16699
2019-10-16 19:15:15
typo3
typo3
Remote Code Execution in extension "freeCap CAPTCHA" (sr_freecap)
2019-10-15 00:00:00
cvelist
cvelist
CVE-2019-16699
2019-10-16 18:40:40

EPSS

0.021

Percentile

89.2%

JSON
Related for OSV:GHSA-598P-RV6P-G7QC
prion1nvd1symantec1github1cve1typo31cvelist1