Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2010-1153

PHP remote file inclusion vulnerability in the autoloader in TYPO3 4.3.x before 4.3.3 allows remote attackers to execute arbitrary PHP code via a URL in an input field associated with the className variable.

  • Published: Apr 20, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-1153
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
typo3 / typo3 4.3.2 4.3.2.x
typo3 / typo3 4.3.0 4.3.0.x
typo3 / typo3 4.3.1 4.3.1.x