5 matches found
CVE-2025-9573
The nsbackup extension through 13.0.2 for TYPO3 allows command injection...
CVE-2025-9573
The CVE-2025-9573 entry concerns TYPO3 ns_backup (ns-backup) extension versions up to 13.0.2, where a command injection flaw exists in the generateBackup function. The root cause is improper handling of input that leads to arbitrary command execution when an administrator uses the extension’s bac...
CVE-2025-48206
The nsbackup extension through 13.0.0 for TYPO3 allows XSS...
PT-2025-22375
Name of the Vulnerable Software and Affected Versions TYPO3 ns backup extension versions prior to 13.0.1 Description The issue allows for XSS. Recommendations For versions prior to 13.0.1, update to version 13.0.1 or later to resolve the issue...
PT-2025-22370
Name of the Vulnerable Software and Affected Versions ns backup extension for TYPO3 version 13.0.0 and earlier Description The issue concerns a Predictable Resource Location in the ns backup extension for TYPO3. This allows an unauthenticated remote user to download created backups and...