Typo3 Restler 1.7.0 Local File Disclosure

  • Restler is a simple and effective multi-format Web API Server to host your PHP API as Pragmatic REST and / or RESTful API.

    The Typo3 Restler extension version 1.7.0 (and earlier versions) suffers from a local file disclosure vulnerability that allows an attacker to read arbitrary system files.
  • Upgrade to the latest version of Typo3 Restler extension.