Description

The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL.

Remediation

References

CVE-2019-11831

Related Vulnerabilities

Apache HTTP Server Improper Input Validation Vulnerability (CVE-2017-9788)

WordPress Plugin Media Library Assistant Multiple Cross-Site Scripting Vulnerabilities (2.73)

WordPress Plugin Companion Auto Update Cross-Site Scripting (2.9.3)

Joomla! Core 2.5.x Security Bypass (2.5.0 - 2.5.4)

Python Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-9233)

Severity

Critical

Classification

CVE-2019-11831 CWE-502 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities