rtgdictionary for TYPO3 Arbitrary File Upload Vulnerability

The rtgdictionary extension for TYPO3 is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code on an affected computer with the privileges of the webserver process. The issue occurs because the application fails to sanitize user-supplied input.

This issue affects rtgdictionary 0.1.9 and prior versions.


 

Privacy Statement
Copyright 2010, SecurityFocus