CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2345

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile6.50th
PublishedMay 19, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Unspecified vulnerability in the air_filemanager 0.6.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary PHP code via unspecified vectors related to "insufficient file filtering."

Affected Platforms (CPE)

πŸ“¦
Typo3

Air Filemanager

<= 0.6.0

References & Advisories

πŸ”— http://typo3.org/teams/security/security-bulletins/typo3-20080515-2/
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/42449
πŸ”— http://typo3.org/teams/security/security-bulletins/typo3-20080515-2/
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/42449

Related Vulnerabilities

CVE-2008-66857.5

Unspecified vulnerability in Frontend Filemanager (air_filemanager) 0.6.1 and earlier extension for TYPO3 allows remote attackers ...

CVE-2008-23444.3

Cross-site scripting (XSS) vulnerability in the air_filemanager 0.6.0 and earlier extension for TYPO3 allows remote attackers to i...

CVE-2008-665110.0

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP c...

CVE-2008-073510.0

SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote attackers to execute arbitrary SQL c...