Remote Code Execution in TYPO3 Image Processing Applications

Remote Code Execution in TYPO3 Image Processing Applications

CVE-2019-11832 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

TYPO3 8.x before 8.7.25 and 9.x before 9.5.6 allows remote code execution because it does not properly configure the applications used for image processing, as demonstrated by ImageMagick or GraphicsMagick.

Learn more about our Web Application Penetration Testing UK.