7 High
AI Score
Confidence
High
Failing to properly validate incoming import data, the Import/Export component is susceptible to insecure unserialize. To exploit this vulnerability a valid backend user account is needed.
github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-07-19-2.yaml
typo3.org/security/advisory/typo3-core-sa-2016-015