rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 up to and including 4.0.3, 3.7 and 3.8 with the rtehtmlarea extension, and 4.1 beta allows remote authenticated users to execute arbitrary commands via shell metacharacters in the userUid parameter to rtehtmlarea/htmlarea/plugins/SpellChecker/spell-check-logic.php, and possibly another vector.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
typo3 typo3 4.0 |
||
typo3 typo3 4.0.1 |
||
typo3 typo3 3.7.0 |
||
typo3 typo3 3.8 |
||
typo3 typo3 4.0.2 |
||
typo3 typo3 4.0.3 |