Description

TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to delete arbitrary files on the webserver.

Remediation

References

CVE-2011-4902

Related Vulnerabilities

Jenkins CVE-2013-0158 Vulnerability (CVE-2013-0158)

MyBB Improper Privilege Management Vulnerability (CVE-2018-1000503)

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2157)

WordPress Plugin Easy Testimonial Slider Unspecified Vulnerability (1.0.2)

WordPress Plugin NextGEN Gallery-WordPress Gallery SQL Injection (3.2.10)

Severity

Medium

Classification

CVE-2011-4902 CWE-20 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities