CVE-2008-4188

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0290%

EPSS Percentile10.13th

PublishedSep 23, 2008

Last ModifiedApr 23, 2026

Vulnerability Description

Unspecified vulnerability in the TYPO3 Secure Directory (kw_secdir) extension before 1.0.2 allows remote attackers to execute arbitrary code via unknown vectors related to "injection of control characters."

Affected Platforms (CPE)

📦

Typo3

Secure Directory

<= 1.0.1

📦

Typo3

Secure Directory

= 0.1.3

📦

Typo3

Secure Directory

= 1.0.0

References & Advisories

🔗 http://secunia.com/advisories/31897

🔗 http://typo3.org/extensions/repository/view/kw_secdir/1.0.2/

🔗 http://www.securityfocus.com/bid/31253

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/45260

🔗 http://secunia.com/advisories/31897

🔗 http://typo3.org/extensions/repository/view/kw_secdir/1.0.2/

🔗 http://www.securityfocus.com/bid/31253

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/45260

Vulnerability Description

Affected Platforms (CPE)

Secure Directory

Secure Directory

Secure Directory

References & Advisories

Related Vulnerabilities