NuytsTech Security

CVE-2010-1153

by ·

PHP remote file inclusion vulnerability in the autoloader in TYPO3 4.3.x before 4.3.3 allows remote attackers to execute arbitrary PHP code via a URL in an input field associated with the className variable.

Date published : 2010-04-20

http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-008/

http://marc.info/?l=oss-security&m=127092306209177&w=2

Tags: