Skip to main content

Sr Freecap

1 CVEs product

Monthly

CVE-2019-16699 PHP CRITICAL PATCH Act Now

The sr_freecap (aka freeCap CAPTCHA) extension 2.4.5 and below and 2.5.2 and below for TYPO3 fails to sanitize user input, which allows execution of arbitrary Extbase actions, resulting in Remote. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Sr Freecap
NVD
CVSS 3.1
9.8
EPSS
2.4%
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

The sr_freecap (aka freeCap CAPTCHA) extension 2.4.5 and below and 2.5.2 and below for TYPO3 fails to sanitize user input, which allows execution of arbitrary Extbase actions, resulting in Remote. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Sr Freecap
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy