CVE-2014-3942

Published: Jun 3, 2014Modified: May 6, 2026

6.0

Vector

AV:N/AC:M/Au:S/C:P/I:P/A:P

Exploitability: 6.8 / Impact: 6.4

Source: NVD

Description

The Color Picker Wizard component in TYPO3 4.5.0 before 4.5.34, 4.7.0 before 4.7.19, 6.0.0 before 6.0.14, and 6.1.0 before 6.1.9 allows remote authenticated editors to execute arbitrary PHP code via a serialized PHP object.

Affected (76)

Products: Typo3: Typo3

Typo3

1 product

Typo3

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 6.1.1
Typo3 Typo3	Version 6.1.2
Typo3 Typo3	Version 6.1.3
Typo3 Typo3	Version 6.1.4
Typo3 Typo3	Version 6.1.5
Typo3 Typo3	Version 6.1.6
Typo3 Typo3	Version 6.1.7
Typo3 Typo3	Version 6.1.8
Typo3 Typo3	Version 6.1

Configuration B

19 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 4.7.0
Typo3 Typo3	Version 4.7.10
Typo3 Typo3	Version 4.7.11
Typo3 Typo3	Version 4.7.12
Typo3 Typo3	Version 4.7.13
Typo3 Typo3	Version 4.7.14
Typo3 Typo3	Version 4.7.15
Typo3 Typo3	Version 4.7.16
Typo3 Typo3	Version 4.7.17
Typo3 Typo3	Version 4.7.18
Typo3 Typo3	Version 4.7.1
Typo3 Typo3	Version 4.7.2
Typo3 Typo3	Version 4.7.3
Typo3 Typo3	Version 4.7.4
Typo3 Typo3	Version 4.7.5
Typo3 Typo3	Version 4.7.6
Typo3 Typo3	Version 4.7.7
Typo3 Typo3	Version 4.7.8
Typo3 Typo3	Version 4.7.9

Configuration C

34 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 4.5.0
Typo3 Typo3	Version 4.5.10
Typo3 Typo3	Version 4.5.11
Typo3 Typo3	Version 4.5.12
Typo3 Typo3	Version 4.5.13
Typo3 Typo3	Version 4.5.14
Typo3 Typo3	Version 4.5.15
Typo3 Typo3	Version 4.5.16
Typo3 Typo3	Version 4.5.17
Typo3 Typo3	Version 4.5.18
Typo3 Typo3	Version 4.5.19
Typo3 Typo3	Version 4.5.1
Typo3 Typo3	Version 4.5.20
Typo3 Typo3	Version 4.5.21
Typo3 Typo3	Version 4.5.22
Typo3 Typo3	Version 4.5.23
Typo3 Typo3	Version 4.5.24
Typo3 Typo3	Version 4.5.25
Typo3 Typo3	Version 4.5.26
Typo3 Typo3	Version 4.5.27
Typo3 Typo3	Version 4.5.28
Typo3 Typo3	Version 4.5.29
Typo3 Typo3	Version 4.5.2
Typo3 Typo3	Version 4.5.30
Typo3 Typo3	Version 4.5.31
Typo3 Typo3	Version 4.5.32
Typo3 Typo3	Version 4.5.33
Typo3 Typo3	Version 4.5.3
Typo3 Typo3	Version 4.5.4
Typo3 Typo3	Version 4.5.5
Typo3 Typo3	Version 4.5.6
Typo3 Typo3	Version 4.5.7
Typo3 Typo3	Version 4.5.8
Typo3 Typo3	Version 4.5.9

Configuration D

14 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 6.0.10
Typo3 Typo3	Version 6.0.11
Typo3 Typo3	Version 6.0.12
Typo3 Typo3	Version 6.0.13
Typo3 Typo3	Version 6.0.1
Typo3 Typo3	Version 6.0.2
Typo3 Typo3	Version 6.0.3
Typo3 Typo3	Version 6.0.4
Typo3 Typo3	Version 6.0.5
Typo3 Typo3	Version 6.0.6
Typo3 Typo3	Version 6.0.7
Typo3 Typo3	Version 6.0.8
Typo3 Typo3	Version 6.0.9
Typo3 Typo3	Version 6.0