Vulnerabilities > Typo3 > Typo3 > 4.5.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-02-18 | CVE-2011-4614 | Code Injection vulnerability in Typo3 PHP remote file inclusion vulnerability in Classes/Controller/AbstractController.php in the workspaces system extension in TYPO3 4.5.x before 4.5.9, 4.6.x before 4.6.2, and development versions of 4.7 allows remote attackers to execute arbitrary PHP code via a URL in the BACK_PATH parameter. | 6.8 |