vulnerability note CVE-2014-6290
TYPO3 tt_news: code execution via Unserialize
Synthesis of the vulnerability
An attacker can unserialize data of TYPO3 tt_news, in order to execute code.Impacted products: TYPO3 Extensions
CVE-2014-6290, TYPO3-EXT-SA-2014-003, VIGILANCE-VUL-14234.
Description of the vulnerability
An attacker can unserialize data of TYPO3 tt_news, in order to execute code.
Technical details are unknown.Complete Vigil@nce bulletin....
Share this bulletin
Computer vulnerabilities tracking service
Vigil@nce provides applications vulnerabilities alerts
. Each administrator can customize the list of products for which he wants to receive vulnerability alerts. The technology watch team tracks security threats targeting the computer system. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.