Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
TYPO3 Improper Input Validation Vulnerability - CVE-2013-4250 - Vulnerability Database
TYPO3

TYPO3 Improper Input Validation Vulnerability - CVE-2013-4250

Medium
Reference: CVE-2013-4250
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-4250
Title: TYPO3 Improper Input Validation Vulnerability
Overview:

The (1) file upload component and (2) File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.8 and 6.1.x before 6.1.3 do not properly check file extensions which allow remote authenticated editors to execute arbitrary PHP code by uploading a .php file.