7.5
CVE-2011-3980
- EPSS 1.37%
- Veröffentlicht 04.10.2011 10:55:11
- Zuletzt bearbeitet 16.06.2026 23:34:14
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginUnspecified vulnerability in the Drag Drop Mass Upload (ameos_dragndropupload) extension 2.0.2 and earlier for TYPO3 allows remote attackers to upload arbitrary files via unknown vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Jerome Schneider ≫ Ameos Dragndropupload Version <= 2.0.2
Jerome Schneider ≫ Ameos Dragndropupload Version2.0.0
Jerome Schneider ≫ Ameos Dragndropupload Version2.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.37% | 0.684 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2011-010/
http://www.securityfocus.com/bid/49516
https://exchange.xforce.ibmcloud.com/vulnerabilities/69694