CVE-2024-22188: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) in typo3/cms-core.
References
- github.com/TYPO3/typo3/commit/47e897f8c7668ef299ecc9ce93f52cafbb3497ed
- github.com/TYPO3/typo3/commit/6cc11761b8e2434fa4ccc9f096c65ca82569cfdf
- github.com/TYPO3/typo3/commit/84e07e35b880a544b517868432c56987d05d46d4
- github.com/TYPO3/typo3/security/advisories/GHSA-5w2h-59j3-8x5w
- github.com/advisories/GHSA-5w2h-59j3-8x5w
- typo3.org/security/advisory/typo3-core-sa-2024-002
Code Behaviors & Features
Detect and mitigate CVE-2024-22188 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →