SecuritySpace - CVE-2013-4250

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2013-4250

Description: The (1) file upload component and (2) File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.8 and 6.1.x before 6.1.3 do not properly check file extensions, which allow remote authenticated editors to execute arbitrary PHP code by uploading a .php file.

Test IDs: 1.3.6.1.4.1.25623.1.0.804204

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-4250

CVE ID:	CVE-2013-4250
Description:	The (1) file upload component and (2) File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.8 and 6.1.x before 6.1.3 do not properly check file extensions, which allow remote authenticated editors to execute arbitrary PHP code by uploading a .php file.
Test IDs:	1.3.6.1.4.1.25623.1.0.804204
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4250