CVE-2019-16699
N/A
N/A
Summary
The sr_freecap (aka freeCap CAPTCHA) extension 2.4.5 and below and 2.5.2 and below for TYPO3 fails to sanitize user input, which allows execution of arbitrary Extbase actions, resulting in Remote Code Execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://extensions.typo3.org/extension/sr_freecap
- https://typo3.org/security/advisory/typo3-ext-sa-2019-018/
References
- https://extensions.typo3.org/extension/sr_freecap
- https://typo3.org/security/advisory/typo3-ext-sa-2019-018/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.