Описание
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| saucy | ignored | end of life |
Показывать по
10
EPSS
Процентиль: 63%
0.00442
Низкий
6 Medium
CVSS2
Связанные уязвимости
nvd
больше 11 лет назад
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.
debian
больше 11 лет назад
The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 ...
github
больше 3 лет назад
TYPO3 Color Picker Wizard component allows remote authenticated editors to execute arbitrary PHP code
EPSS
Процентиль: 63%
0.00442
Низкий
6 Medium
CVSS2