Описание
TYPO3 Color Picker Wizard component allows remote authenticated editors to execute arbitrary PHP code
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.
Пакеты
typo3/cms
>= 4.5.0, < 4.5.34
4.5.34
typo3/cms
>= 4.7.0, < 4.7.19
4.7.19
typo3/cms
>= 6.0.0, < 6.0.14
6.0.14
typo3/cms
>= 6.1.0, < 6.1.9
6.1.9
Связанные уязвимости
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 ...