CVE-2006-6690

NONECVSS 0.0

0.0

rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 through 4.0.3, 3.7 and 3.8 with the rtehtmlarea extension, and 4.1 beta allows remote authenticated users to execute arbitrary commands via shell metacharacters in the userUid parameter to rtehtmlarea/htmlarea/plugins/SpellChecker/spell-check-logic.php, and possibly another vector.

🔗 References (22)

cve@mitrehttp://lists.netfielders.de/pipermail/typo3-announce/2006/000045.html
cve@mitrehttp://lists.netfielders.de/pipermail/typo3-announce/2006/000046.html
cve@mitrehttp://secunia.com/advisories/23446
cve@mitrehttp://secunia.com/advisories/23466
cve@mitrehttp://securityreason.com/securityalert/2056
cve@mitrehttp://securitytracker.com/id?1017428
cve@mitrehttp://typo3.org/news-single-view/?tx_newsimporter_pi1%5BshowItem%5D=0&cHash=e4a40a11a9
cve@mitrehttp://www.sec-consult.com/272.html
cve@mitrehttp://www.securityfocus.com/archive/1/454944/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/21680
cve@mitrehttp://www.vupen.com/english/advisories/2006/5094
af854a3a-2127-422b-91ae-364da2661108http://lists.netfielders.de/pipermail/typo3-announce/2006/000045.html
af854a3a-2127-422b-91ae-364da2661108http://lists.netfielders.de/pipermail/typo3-announce/2006/000046.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23446
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23466

Is Your Infrastructure Affected by CVE-2006-6690?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-6690

📅 Published

🔄 Last Modified

🔗 References (22)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-6690?