Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:22188
HistoryDec 18, 2019 - 2:06 a.m.

Directory Traversal

2019-12-1802:06:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

0.002 Low

EPSS

Percentile

55.5%

JSON

typo3/cms is vulnerable to directory traversal. Manually uploaded Zip archives are not validated and allows for malicious file names containing the ../ characters. This could potentially result in system files being overwritten upon extraction.

Related

prion 1
friendsofphp 2
typo3 1
osv 2
cve 1
nvd 1
cvelist 1
github 1
openvas 1
nessus 1
prion
prion
Directory traversal
2019-12-17 17:15:00
friendsofphp
friendsofphp
Directory Traversal on ZIP extraction
2019-12-17 09:50:57
Directory Traversal on ZIP extraction
2019-12-17 09:50:57
typo3
typo3
Directory Traversal on ZIP extraction
2019-12-17 00:00:00
osv
osv
CVE-2019-19848
2019-12-17 17:15:17
TYPO3 Directory Traversal on ZIP extraction
2022-05-24 17:03:52
cve
cve
CVE-2019-19848
2019-12-17 17:15:17
nvd
nvd
CVE-2019-19848
2019-12-17 17:15:17
cvelist
cvelist
CVE-2019-19848
2019-12-17 16:02:50
github
github
TYPO3 Directory Traversal on ZIP extraction
2022-05-24 17:03:52
openvas
openvas
TYPO3 8.x.x <= 8.7.29, 9.x.x <= 9.5.11 and 10.x.x <= 10.2.0 Multiple Vulnerabilities
2019-12-18 00:00:00
nessus
nessus
TYPO3 8.x < 8.7.30 / 9.x < 9.5.12 / 10.x < 10.2.2 Multiple Vulnerabilities
2020-07-15 00:00:00

0.002 Low

EPSS

Percentile

55.5%

JSON
Related for VERACODE:22188
prion1friendsofphp2typo31osv2cve1nvd1cvelist1github1openvas1nessus1