CVE-2025-9573

Summary

The ns_backup extension through 13.0.2 for TYPO3 allows command injection.

Affected Software

VendorProductVersion RangeStatus
TYPO3Extension “TYPO3 Backup Plus”0 <= 13.0.2affected

Weaknesses

  • CWE-78: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References