Description
Directory traversal vulnerability in the TypoScript setup in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allows remote authenticated administrators to read arbitrary files via unspecified vectors related to the "file inclusion functionality."
Remediation
References
Related Vulnerabilities
WordPress Plugin PowerPack Lite for Beaver Builder Cross-Site Scripting (1.3.0.4)
WordPress 'wp-trackback.php' SQL Injection Vulnerability (1.5)
WordPress Plugin Responsive Cookie Consent Cross-Site Scripting (1.7)
WordPress Plugin Front End Upload Arbitrary File Upload (0.5.4.4)
Drupal Core 9.1.x Cross-Site Request Forgery (9.1.0 - 9.1.12)