Lucene search
Ubuntu.comUB:CVE-2009-3631HistoryNov 02, 2009 - 12:00 a.m.
CVE-2009-3631
2009-11-0200:00:00
ubuntu.com
ubuntu.com
7
8.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
72.3%
The Backend subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13,
4.2.x before 4.2.10, and 4.3.x before 4.3beta2, when the DAM extension or
ftp upload is enabled, allows remote authenticated users to execute
arbitrary commands via shell metacharacters in a filename.
Related
cve
cve
CVE-2009-3631
2009-11-02 15:30:00
prion
prion
Code injection
2009-11-02 15:30:00
nvd
nvd
CVE-2009-3631
2009-11-02 15:30:00
cvelist
cvelist
CVE-2009-3631
2009-11-02 15:00:00
github
github
osv
osv
typo3-src - several vulnerabilities
2009-11-04 00:00:00
openvas
openvas
TYPO3 Multiple Vulnerabilities (Oct 2009)
2013-12-27 00:00:00
FreeBSD Ports: typo3
2009-11-11 00:00:00
FreeBSD Ports: typo3
2009-11-11 00:00:00
nessus
nessus
Debian DSA-1926-1 : typo3-src - several vulnerabilities
2010-02-24 00:00:00
debian
debian
[SECURITY] [DSA 1926-1] New TYPO3 packages fix several vulnerabilities
2009-11-04 19:33:20
securityvulns
securityvulns
freebsd
freebsd
typo3 -- multiple vulnerabilities in TYPO3 Core
2009-10-22 00:00:00
8.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
72.3%
Related for UB:CVE-2009-3631