Vulnerability Details CVE-2010-4068
Unspecified vulnerability in the Extension Manager in TYPO3 4.2.x before 4.2.15, 4.3.x before 4.3.7, and 4.4.x before 4.4.4 allows remote authenticated administrators to read and possibly modify arbitrary files via a crafted parameter, a different vulnerability than CVE-2010-3714.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.7%
CVSS Severity
CVSS v2 Score 4.9
References
- http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-020/
- http://www.debian.org/security/2010/dsa-2121
- http://www.securityfocus.com/bid/43786
- http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-020/
- http://www.debian.org/security/2010/dsa-2121
- http://www.securityfocus.com/bid/43786
Products affected by CVE-2010-4068
-
cpe:2.3:a:typo3:typo3:4.2.0
-
cpe:2.3:a:typo3:typo3:4.2.1
-
cpe:2.3:a:typo3:typo3:4.2.10
-
cpe:2.3:a:typo3:typo3:4.2.11
-
cpe:2.3:a:typo3:typo3:4.2.12
-
cpe:2.3:a:typo3:typo3:4.2.13
-
cpe:2.3:a:typo3:typo3:4.2.14
-
cpe:2.3:a:typo3:typo3:4.2.2
-
cpe:2.3:a:typo3:typo3:4.2.3
-
cpe:2.3:a:typo3:typo3:4.2.4
-
cpe:2.3:a:typo3:typo3:4.2.5
-
cpe:2.3:a:typo3:typo3:4.2.6
-
cpe:2.3:a:typo3:typo3:4.2.7
-
cpe:2.3:a:typo3:typo3:4.2.8
-
cpe:2.3:a:typo3:typo3:4.2.9
-
cpe:2.3:a:typo3:typo3:4.3.0
-
cpe:2.3:a:typo3:typo3:4.3.1
-
cpe:2.3:a:typo3:typo3:4.3.2
-
cpe:2.3:a:typo3:typo3:4.3.3
-
cpe:2.3:a:typo3:typo3:4.3.4
-
cpe:2.3:a:typo3:typo3:4.3.5
-
cpe:2.3:a:typo3:typo3:4.3.6
-
cpe:2.3:a:typo3:typo3:4.4
-
cpe:2.3:a:typo3:typo3:4.4.1
-
cpe:2.3:a:typo3:typo3:4.4.2
-
cpe:2.3:a:typo3:typo3:4.4.3