MidnightBSD

Advisories for news_project

CVE-2014-6290 HIGH

The News (tt_news) extension before 3.5.2 for TYPO3 allows remote attackers to have unspecified impact via vectors related to an "insecure unserialize" issue.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
news_project news 3.0.0
news_project news 3.2.0
news_project news 3.1.0
news_project news 3.5.0
news_project news 3.0.1
news_project news 3.4.0
news_project news *
news_project news 3.2.1