GHSA-rmqc-wfjm-3f66
Suggest an improvement- Source
- https://github.com/advisories/GHSA-rmqc-wfjm-3f66
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rmqc-wfjm-3f66/GHSA-rmqc-wfjm-3f66.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-rmqc-wfjm-3f66
- Aliases
-
- CVE-2010-5101
- Published
- 2022-05-17T01:55:58Z
- Modified
- 2025-04-12T02:57:06.751662Z
- Severity
-
- 4.6 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U CVSS Calculator
- Summary
- TYPO3 Directory Traversal vulnerability
- Details
-
Directory traversal vulnerability in the TypoScript setup in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allows remote authenticated administrators to read arbitrary files via unspecified vectors related to the "file inclusion functionality."
- Database specific
{ "nvd_published_at": "2012-05-21T20:55:00Z", "cwe_ids": [ "CWE-22" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2025-04-12T02:29:03Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2010-5101
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64180
- https://github.com/TYPO3/typo3
- https://web.archive.org/web/20120123102224/http://www.securityfocus.com/bid/45470
- https://web.archive.org/web/20121103085228/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022
- http://www.openwall.com/lists/oss-security/2011/01/13/2
- http://www.openwall.com/lists/oss-security/2012/05/10/7
- http://www.openwall.com/lists/oss-security/2012/05/11/3
- http://www.openwall.com/lists/oss-security/2012/05/12/5