Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-4626

Malware in sbrugna...

7.5CVSS6.4AI score0.02673EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-2290

Malware in sbrugna...

7.5CVSS7.5AI score0.00997EPSS
Exploits0References4
OSV
OSV
added 2021/11/10 4:15 p.m.3 views

CVE-2021-43564

An issue was discovered in the jobfair aka Job Fair extension before 1.0.13 and 2.x before 2.0.2 for TYPO3. The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded...

7.5CVSS5.8AI score0.00997EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/11/10 4:15 p.m.3 views

CVE-2021-43564

An issue was discovered in the jobfair aka Job Fair extension before 1.0.13 and 2.x before 2.0.2 for TYPO3. The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded...

7.5CVSS7.1AI score0.00997EPSS
Exploits0References2
Typo3
Typo3
added 2021/11/10 12:0 a.m.26 views

Sensitive Data Exposure in extension "Job Fair" (jobfair)

The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded files e.g uploads/txjobfair/cv.pdf...

5CVSS7.3AI score0.00997EPSS
Exploits0Affected Software1
Typo3
Typo3
added 2020/05/12 12:0 a.m.16 views

Sensitive Data Exposure in extension "Job Fair" (jobfair)

The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded files e.g uploads/txjobfair/cv.pdf...

6.9AI score
Exploits0Affected Software1
CNVD
CNVD
added 2015/06/17 12:0 a.m.3 views

TYPO3 Job Fair Arbitrary File Upload Vulnerability

TYPO3 is a free and open source content management system, Job Fair is a marketplace work extension plugin based on Extbase and Fluid. An arbitrary file upload vulnerability exists in TYPO3 Job Fair, which allows remote attackers to exploit the vulnerability to submit a special file and execute i...

7.5CVSS7.4AI score0.02673EPSS
Exploits0References1
NVD
NVD
added 2015/06/16 4:59 p.m.11 views

CVE-2015-4606

Unrestricted file upload vulnerability in the Job Fair jobfair extension before 1.0.1 for TYPO3, when using Apache with modmime, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the extension...

7.5CVSS7.7AI score0.02673EPSS
Exploits0References3
Prion
Prion
added 2015/06/16 4:59 p.m.10 views

Unrestricted file upload

Unrestricted file upload vulnerability in the Job Fair jobfair extension before 1.0.1 for TYPO3, when using Apache with modmime, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the extension...

7.5CVSS8.3AI score0.02673EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/06/16 4:0 p.m.21 views

CVE-2015-4606

Unrestricted file upload vulnerability in the Job Fair jobfair extension before 1.0.1 for TYPO3, when using Apache with modmime, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the extension...

7.7AI score0.02673EPSS
Exploits0References3
CVE
CVE
added 2015/06/16 4:0 p.m.41 views

CVE-2015-4606

TYPO3 Job Fair (extension: jobfair) for TYPO3 is vulnerable to unrestricted file upload in versions before 1.0.1 when used with Apache and mod_mime. An attacker can upload a file with an executable extension and access it directly in the extension upload folder to execute arbitrary code, enabling...

7.5CVSS8AI score0.02673EPSS
Exploits0References3Affected Software1
Typo3
Typo3
added 2015/06/15 12:0 a.m.23 views

Arbitrary Code Execution in extension Job Fair (jobfair)

It has been discovered that the extension "Job Fair" jobfair is susceptible to Arbitrary Code Execution Release Date: June 15, 2015 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 1.0.0 and below Vulnerability Type:...

7.5AI score
Exploits0Affected Software1
Rows per page
Query Builder