Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
TYPO3 Improper Input Validation Vulnerability - CVE-2009-0258 - Vulnerability Database
TYPO3

TYPO3 Improper Input Validation Vulnerability - CVE-2009-0258

Critical
Reference: CVE-2009-0258
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-0258
Title: TYPO3 Improper Input Validation Vulnerability
Overview:

The Indexed Search Engine (indexed_search) system extension in TYPO3 4.0.0 through 4.0.9 4.1.0 through 4.1.7 and 4.2.0 through 4.2.3 allows remote attackers to execute arbitrary commands via a crafted filename containing shell metacharacters which is not properly handled by the command-line indexer.