CVE-2011-4904

Summary

TYPO3 before 4.4.9 and 4.5.x before 4.5.4 does not apply proper access control on ExtDirect calls which allows remote attackers to retrieve ExtDirect endpoint services.

Affected Software

VendorProductVersion RangeStatus
TYPO3TYPO3before 4.5.4affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References