Description
Directory traversal vulnerability in the TypoScript setup in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allows remote authenticated administrators to read arbitrary files via unspecified vectors related to the "file inclusion functionality."
Remediation
References
Related Vulnerabilities
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2011-4317)
Oracle Application Server CVE-2009-3412 Vulnerability (CVE-2009-3412)
WordPress 5.0 Multiple Vulnerabilities (5.0)
Oracle Database Server Other Vulnerability (CVE-2007-5513)
WordPress Plugin Fast Secure Contact Form-Clockwork SMS Cross-Site Scripting (2.1.2)