CVE-2023-50461 | Ivan Kartolo Direct Mail Extension on TYPO3 Configuration injection

Posted by Angelo Barbosa | Dec 14, 2023 | CVE

A vulnerability classified as critical has been found in Ivan Kartolo Direct Mail Extension on TYPO3. Affected is an unknown function of the component Configuration Handler. The manipulation leads to injection.

This vulnerability is traded as CVE-2023-50461. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-50461 | Ivan Kartolo Direct Mail Extension on TYPO3 Configuration injection

Related Posts

CVE-2024-26698 | Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5 hv_netvsc netvsc_probe race condition

CVE-2024-4814 | Ruijie RG-UAC up to 20240506 static_route_edit_commit.php oldipmask/oldgateway os command injection

Chunghwa Telecom NOKIA G-040W-Q excessive authentication

CVE-2024-39119 | idcCMS 1.35 info_deal.php cross-site request forgery