Lucene search
K

14 matches found

EUVD
EUVD
‱added 2025/10/07 12:30 a.m.‱8 views

EUVD-2010-5061

Malware in sbrugna...

6.8CVSS6.1AI score0.03117EPSS
Exploits1References11
Circl
Circl
‱added 2018/05/29 3:50 p.m.‱10 views

CVE-2010-3714

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/typo3sa2010020.rb 2025-02-06 03:13:40+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:49+00:00| seen|...

7.1CVSS5.5AI score0.24558EPSS
Exploits7References1
Prion
Prion
‱added 2012/05/30 8:55 p.m.‱25 views

Path traversal

The fileDenyPattern functionality in the PHP file inclusion protection API in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 does not properly filter file types, which allows remote attackers to bypass intended access restrictions and access arbitrary PHP files, as...

6.8CVSS6.9AI score0.24558EPSS
Exploits8References9Affected Software1
Metasploit
Metasploit
‱added 2011/11/07 5:34 p.m.‱57 views

TYPO3 sa-2010-020 Remote File Disclosure

This module exploits a flaw in the way the TYPO3 jumpurl feature matches hashes. Due to this flaw a Remote File Disclosure is possible by matching the juhash of 0. This flaw can be used to read any file that the web server user account has access to view. This module requires Metasploit:...

7.1CVSS6.1AI score0.24558EPSS
Exploits7
exploitpack
exploitpack
‱added 2010/12/29 12:0 a.m.‱92 views

TYPO3 - Arbitrary File Retrieval

TYPO3 - Arbitrary File Retrieval ?php / TYPO3-SA-2010-022.php Exploit Title: TYPO3 Unauthenticated Arbitrary File Retrieval TYPO3-SA-2010-020, TYPO3-SA-2010-022 Date: 29/12/2010 Author: ikki Software Link: http://typo3.org/download/, http://sourceforge.net/projects/typo3/files/ Version: 4.2.15,...

7.1CVSS0.7AI score0.24558EPSS
Exploits7
Packet Storm
Packet Storm
‱added 2010/12/29 12:0 a.m.‱67 views

TYPO3 Unauthenticated Arbitrary File Retrieval

?php / TYPO3-SA-2010-022.php Exploit Title: TYPO3 Unauthenticated Arbitrary File Retrieval TYPO3-SA-2010-020, TYPO3-SA-2010-022 Date: 29/12/2010 Author: ikki Software Link: http://typo3.org/download/, http://sourceforge.net/projects/typo3/files/ Version: 4.2.15, 4.3.7 or 4.4.4 Tested on: php CVE ...

7.1CVSS0.3AI score0.24558EPSS
Exploits7
OpenVAS
OpenVAS
‱added 2010/11/17 12:0 a.m.‱43 views

Debian Security Advisory DSA 2121-1 (typo3-src)

The remote host is missing an update to typo3-src announced via advisory DSA 2121-1. OpenVAS Vulnerability Test $Id: deb21211.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2121-1 typo3-src Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

7.1CVSS0.5AI score0.24558EPSS
Exploits7
OpenVAS
OpenVAS
‱added 2010/11/17 12:0 a.m.‱36 views

Debian: Security Advisory (DSA-2121-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.5AI score0.24558EPSS
Exploits7References3
NVD
NVD
‱added 2010/10/25 8:1 p.m.‱23 views

CVE-2010-3714

The jumpUrl aka access tracking implementation in tslib/class.tslibfe.php in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 does not properly compare certain hash values during access-control decisions, which allows remote attackers to read arbitrary files via unspecified...

7.1CVSS6.4AI score0.24558EPSS
Exploits7References5
UbuntuCve
UbuntuCve
‱added 2010/10/25 8:1 p.m.‱42 views

CVE-2010-4068

Unspecified vulnerability in the Extension Manager in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 allows remote authenticated administrators to read and possibly modify arbitrary files via a crafted parameter, a different vulnerability than CVE-2010-3714...

4.9CVSS6AI score0.00892EPSS
Exploits0References1
CVE
CVE
‱added 2010/10/25 7:0 p.m.‱85 views

CVE-2010-3714

TYPO3 SA/remote file disclosure due to a non-typesafe jumpUrl hash comparison in tslib/class.tslib_fe.php affects TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4. An attacker can exploit this to read arbitrary files via unspecified vectors. The issue is documented as CVE-201...

7.1CVSS6.5AI score0.24558EPSS
Exploits7References5Affected Software1
securityvulns
securityvulns
‱added 2010/10/24 12:0 a.m.‱125 views

[SECURITY] [DSA 2121-1] New TYPO3 packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2121-1 [email protected] http://www.debian.org/security/ Florian Weimer October 19, 2010 http://www.debian.org/security/faq -...

7.1CVSS0.6AI score0.24558EPSS
Exploits7
Debian
Debian
‱added 2010/10/19 8:7 p.m.‱49 views

[SECURITY] [DSA 2121-1] New TYPO3 packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-2121-1 [email protected] http://www.debian.org/security/ Florian Weimer October 19, 2010 http://www.debian.org/security/faq -...

7.1CVSS7.1AI score0.24558EPSS
Exploits7
OSV
OSV
‱added 2010/10/19 12:0 a.m.‱42 views

DSA-2121-1 typo3-src - several vulnerabilities

Bulletin has no description...

7.1CVSS5.9AI score0.24558EPSS
Exploits7
Rows per page
Query Builder