Description
TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to delete arbitrary files on the webserver.
Remediation
References
Related Vulnerabilities
WordPress Plugin Really Simple Share Cross-Site Request Forgery (2.9.9)
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (2.0.225)
WordPress Plugin CMS Tree Page View Multiple Vulnerabilities (1.4)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-3545)