12 matches found
EUVD-2015-4626
Malware in sbrugna...
EUVD-2021-2290
Malware in sbrugna...
CVE-2021-43564
An issue was discovered in the jobfair aka Job Fair extension before 1.0.13 and 2.x before 2.0.2 for TYPO3. The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded...
CVE-2021-43564
An issue was discovered in the jobfair aka Job Fair extension before 1.0.13 and 2.x before 2.0.2 for TYPO3. The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded...
Sensitive Data Exposure in extension "Job Fair" (jobfair)
The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded files e.g uploads/txjobfair/cv.pdf...
Sensitive Data Exposure in extension "Job Fair" (jobfair)
The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive data by simply guessing the filename of uploaded files e.g uploads/txjobfair/cv.pdf...
TYPO3 Job Fair Arbitrary File Upload Vulnerability
TYPO3 is a free and open source content management system, Job Fair is a marketplace work extension plugin based on Extbase and Fluid. An arbitrary file upload vulnerability exists in TYPO3 Job Fair, which allows remote attackers to exploit the vulnerability to submit a special file and execute i...
CVE-2015-4606
Unrestricted file upload vulnerability in the Job Fair jobfair extension before 1.0.1 for TYPO3, when using Apache with modmime, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the extension...
Unrestricted file upload
Unrestricted file upload vulnerability in the Job Fair jobfair extension before 1.0.1 for TYPO3, when using Apache with modmime, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the extension...
CVE-2015-4606
Unrestricted file upload vulnerability in the Job Fair jobfair extension before 1.0.1 for TYPO3, when using Apache with modmime, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the extension...
CVE-2015-4606
TYPO3 Job Fair (extension: jobfair) for TYPO3 is vulnerable to unrestricted file upload in versions before 1.0.1 when used with Apache and mod_mime. An attacker can upload a file with an executable extension and access it directly in the extension upload folder to execute arbitrary code, enabling...
Arbitrary Code Execution in extension Job Fair (jobfair)
It has been discovered that the extension "Job Fair" jobfair is susceptible to Arbitrary Code Execution Release Date: June 15, 2015 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 1.0.0 and below Vulnerability Type:...