Remote Code Execution Vulnerability in TYPO3 Air File Manager Extension
CVE-2008-2345

Currently unrated

Key Information:

Vendor: Typo3
Status: Air Filemanager
Vendor: CVE Published:; 19 May 2008

What is CVE-2008-2345?

The air_filemanager extension for TYPO3 is susceptible to a vulnerability that enables remote attackers to execute arbitrary PHP code. This security flaw arises from insufficient file filtering, which could be exploited through various unspecified vectors, potentially leading to unauthorized access and manipulation of sensitive data. Users are advised to update to a patched version to mitigate the risks associated with this vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/42449

vdb-entryx_refsource_XF

http://typo3.org/teams/security/security-bulletins/typo3-...

x_refsource_CONFIRM

Timeline

Vulnerability published
May 19, 2008
Vulnerability Reserved
May 19, 2008

Typo3

What is CVE-2008-2345?

References

Timeline