Code injection

2014-09-1114:16:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

Low

0.091 Low

EPSS

Percentile

94.7%

JSON

Unspecified vulnerability in the LumoNet PHP Include (lumophpinclude) extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary scripts via vectors related to extension links.

CPENameOperatorVersion
lumonet_php_includeeq1.2.0

CPE	Name	Operator	Version
	lumonet_php_include	eq	1.2.0

References

secunia.com/advisories/60873

typo3.org/extensions/repository/view/lumophpinclude

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-010

www.securityfocus.com/bid/69569

exchange.xforce.ibmcloud.com/vulnerabilities/95707