CVE-2013-4321
The vulnerability concerns TYPO3’s File Abstraction Layer (FAL) in TYPO3 6.0.x (before 6.0.8/6.0.9) and 6.1.x (before 6.1.4) where remote authenticated editors can execute arbitrary PHP code by using unspecified characters in the file extension when renaming a file. This issue is a consequence of...