Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2010-3663 - Vulnerability Database
TYPO3

TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2010-3663

High
Reference: CVE-2010-3663
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-3663
Title: TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability
Overview:

TYPO3 before 4.1.14 4.2.x before 4.2.13 4.3.x before 4.3.4 and 4.4.x before 4.4.1 contains an insecure default value of the variable fileDenyPattern which could allow remote attackers to execute arbitrary code on the backend.