Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Typo3 Restler 1.7.0 Local File Disclosure - Vulnerability Database

Typo3 Restler 1.7.0 Local File Disclosure

Description

Restler is a simple and effective multi-format Web API Server to host your PHP API as Pragmatic REST and / or RESTful API.

The Typo3 Restler extension version 1.7.0 (and earlier versions) suffers from a local file disclosure vulnerability that allows an attacker to read arbitrary system files.

Remediation

Upgrade to the latest version of Typo3 Restler extension.

References

Typo3 Restler 1.7.0 Local File Disclosure
Restler

Related Vulnerabilities

ACME mini_httpd arbitrary file read High
Common tags: Directory Traversal File Inclusion
Laravel log viewer local file download (LFD) High
Common tags: Directory Traversal File Inclusion
ColdFusion directory traversal High
Common tags: Directory Traversal
WordPress Plugin SAM Pro (Free Edition) Local File Inclusion (1.9.6.67) High
Common tags: File Inclusion
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Directory Traversal (1.3.33) High
Common tags: Directory Traversal

Severity

High

Classification

CWE-22
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Directory Traversal
File Inclusion