VulnerableCode Vulnerability Details - VCID-fvcm-r3eg-cfdd

Search for vulnerabilities

Vulnerability details: VCID-fvcm-r3eg-cfdd

Essentials
Severities (11)
References (11)
Severity details (9)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-fvcm-r3eg-cfdd
Aliases	CVE-2010-5101 GHSA-rmqc-wfjm-3f66
Summary	TYPO3 Directory Traversal vulnerability Directory traversal vulnerability in the TypoScript setup in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allows remote authenticated administrators to read arbitrary files via unspecified vectors related to the "file inclusion functionality."
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-22	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
epss	0.00456	https://api.first.org/data/v1/epss?cve=CVE-2010-5101
epss	0.00456	https://api.first.org/data/v1/epss?cve=CVE-2010-5101
generic_textual	MODERATE	https://exchange.xforce.ibmcloud.com/vulnerabilities/64180
generic_textual	MODERATE	https://github.com/TYPO3/typo3
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2010-5101
generic_textual	MODERATE	https://web.archive.org/web/20120123102224/http://www.securityfocus.com/bid/45470
generic_textual	MODERATE	https://web.archive.org/web/20121103085228/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2011/01/13/2
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2012/05/10/7
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2012/05/11/3
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2012/05/12/5

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2010-5101
		https://exchange.xforce.ibmcloud.com/vulnerabilities/64180
		https://github.com/TYPO3/typo3
		https://nvd.nist.gov/vuln/detail/CVE-2010-5101
		https://web.archive.org/web/20120123102224/http://www.securityfocus.com/bid/45470
		https://web.archive.org/web/20121103085228/http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-sa-2010-022
		http://www.openwall.com/lists/oss-security/2011/01/13/2
		http://www.openwall.com/lists/oss-security/2012/05/10/7
		http://www.openwall.com/lists/oss-security/2012/05/11/3
		http://www.openwall.com/lists/oss-security/2012/05/12/5
GHSA-rmqc-wfjm-3f66		https://github.com/advisories/GHSA-rmqc-wfjm-3f66

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.62935
EPSS Score	0.00456
Published At	June 30, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-01T12:28:04.779318+00:00	GithubOSV Importer	Import	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rmqc-wfjm-3f66/GHSA-rmqc-wfjm-3f66.json	36.1.3