Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2021-43564
- EPSS 1.4%
- Veröffentlicht 10.11.2021 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:29:26
An issue was discovered in the jobfair (aka Job Fair) extension before 1.0.13 and 2.x before 2.0.2 for TYPO3. The extension fails to protect or obfuscate filenames of uploaded files. This allows unauthenticated users to download files with sensitive ...
7.5
CVE-2015-4606
- EPSS 1.7%
- Veröffentlicht 16.06.2015 16:59:05
- Zuletzt bearbeitet 12.04.2025 10:46:40
Unrestricted file upload vulnerability in the Job Fair (jobfair) extension before 1.0.1 for TYPO3, when using Apache with mod_mime, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it ...
1