CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-2345

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile6.50th
Published2008年5月19日
Last Modified2026年4月23日

Vulnerability Description

Unspecified vulnerability in the air_filemanager 0.6.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary PHP code via unspecified vectors related to "insufficient file filtering."

Affected Platforms (CPE)

📦
Typo3

Air Filemanager

<= 0.6.0

References & Advisories

🔗 http://typo3.org/teams/security/security-bulletins/typo3-20080515-2/
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/42449
🔗 http://typo3.org/teams/security/security-bulletins/typo3-20080515-2/
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/42449

関連する脆弱性情報

CVE-2008-66857.5

Unspecified vulnerability in Frontend Filemanager (air_filemanager) 0.6.1 and earlier extension for TYPO3 allows remote attackers ...

CVE-2008-23444.3

Cross-site scripting (XSS) vulnerability in the air_filemanager 0.6.0 and earlier extension for TYPO3 allows remote attackers to i...

CVE-2008-665110.0

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP c...

CVE-2008-535310.0

The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and...