Typo3 : Security Vulnerabilities, CVEs, Published In 2012 (Code Execution) CVSS score >= 5
The Extbase Framework in TYPO3 4.6.x through 4.6.6, 4.7, and 6.0 unserializes untrusted data, which allows remote attackers to unserialize arbitrary objects and possibly execute arbitrary code via vectors related to "a missing signature (HMAC) for a request argument."
Max CVSS
5.0
EPSS Score
0.43%
Published
2012-09-04
Updated
2012-09-05
1 vulnerabilities found