Описание
rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 through 4.0.3, 3.7 and 3.8 with the rtehtmlarea extension, and 4.1 beta allows remote authenticated users to execute arbitrary commands via shell metacharacters in the userUid parameter to rtehtmlarea/htmlarea/plugins/SpellChecker/spell-check-logic.php, and possibly another vector.
rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 through 4.0.3, 3.7 and 3.8 with the rtehtmlarea extension, and 4.1 beta allows remote authenticated users to execute arbitrary commands via shell metacharacters in the userUid parameter to rtehtmlarea/htmlarea/plugins/SpellChecker/spell-check-logic.php, and possibly another vector.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-6690
- http://lists.netfielders.de/pipermail/typo3-announce/2006/000045.html
- http://lists.netfielders.de/pipermail/typo3-announce/2006/000046.html
- http://secunia.com/advisories/23446
- http://secunia.com/advisories/23466
- http://securityreason.com/securityalert/2056
- http://securitytracker.com/id?1017428
- http://typo3.org/news-single-view/?tx_newsimporter_pi1%5BshowItem%5D=0&cHash=e4a40a11a9
- http://www.sec-consult.com/272.html
- http://www.securityfocus.com/archive/1/454944/100/0/threaded
- http://www.securityfocus.com/bid/21680
- http://www.vupen.com/english/advisories/2006/5094
EPSS
CVE ID
Связанные уязвимости
rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 through 4.0.3, 3.7 and 3.8 with the rtehtmlarea extension, and 4.1 beta allows remote authenticated users to execute arbitrary commands via shell metacharacters in the userUid parameter to rtehtmlarea/htmlarea/plugins/SpellChecker/spell-check-logic.php, and possibly another vector.
rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 through 4. ...
EPSS