Description

Directory traversal vulnerability in mod/tools/em/class.em_unzip.php in the unzip library in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allows remote attackers to write arbitrary files via unspecified vectors.

Remediation

References

CVE-2010-5102

Related Vulnerabilities

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4378)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-15110)

WordPress Plugin Swipe Checkout for WooCommerce Cross-Site Scripting (2.7.1)

WordPress Plugin HashBar-WordPress Notification Bar Cross-Site Scripting (1.3.5)

WordPress Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2017-8295)

Severity

Medium

Classification

CVE-2010-5102 CWE-22

Tags

Missing Update Known Vulnerabilities