CVE-2008-6630

Опубликовано: 07 апр. 2009

Источник: nvd

CVSS2: 7.8

EPSS Низкий

Описание

Directory traversal vulnerability in the wt_gallery extension 2.5.0 and earlier for TYPO3 allows remote attackers to read arbitrary image files and determine directory structure via unspecified vectors.

Ссылки

http://osvdb.org/45050
http://secunia.com/advisories/30217
Vendor Advisory
http://typo3.org/teams/security/security-bulletins/typo3-20080513-1/
Patch
Vendor Advisory
http://www.securityfocus.com/bid/29182
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/42364
http://osvdb.org/45050
http://secunia.com/advisories/30217
Vendor Advisory
http://typo3.org/teams/security/security-bulletins/typo3-20080513-1/
Patch
Vendor Advisory
http://www.securityfocus.com/bid/29182
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/42364

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*

cpe:2.3:a:typo3:wt_gallery:*:*:*:*:*:*:*:*

Версия до 2.5.0 (включая)

EPSS

Процентиль: 56%

0.00334

Низкий

7.8 High

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-6pfj-r86g-22wr

github

больше 3 лет назад