3 matches found
CVE-2014-3947
Unrestricted file upload vulnerability in the powermail extension before 1.6.11 and 2.x before 2.0.14 for TYPO3 allows remote attackers to execute arbitrary code by uploading a file with a crafted extension, then accessing it via unspecified vectors...
CVE-2014-3947
The vulnerability CVE-2014-3947 affects the TYPO3 powermail extension (versions 1.6.10 and below and 2.x up to 2.0.13). The root cause is an Unrestricted file upload where a file with a crafted extension can be uploaded and later accessed, allowing remote code execution. Impact is described as ar...
Arbitrary code execution in extension "powermail" (powermail)
It has been discovered that the extension "powermail" powermail is susceptible to arbitrary code execution and Cross-Site Scripting Release Date: May 22, 2014 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: powermail:...