CVE-2020-11066— Improperly Controlled Modification of Dynamically-Determined Object Attributes in TYPO3 CMS
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-11066
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improperly Controlled Modification of Dynamically-Determined Object Attributes in TYPO3 CMS
Source: NVD (National Vulnerability Database)
Vulnerability Description
In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.17 and greater than or equal to 10.0.0 and less than 10.4.2, calling unserialize() on malicious user-submitted content can lead to modification of dynamically-determined object attributes and result in triggering deletion of an arbitrary directory in the file system, if it is writable for the web server. It can also trigger message submission via email using the identity of the web site (mail relay). Another insecure deserialization vulnerability is required to actually exploit mentioned aspects. This has been fixed in 9.5.17 and 10.4.2.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-915
Source: NVD (National Vulnerability Database)
Vulnerability Title
TYPO3 Core组件代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
TYPO3是瑞士TYPO3协会的一套免费开源的内容管理系统(框架)(CMS/CMF)。 TYPO3 9.0.0版本至9.5.16版本和10.0.0版本至10.4.1版本中的Core组件存在代码问题漏洞。远程攻击者可利用该漏洞删除文件系统上任意路径并通过邮件使用网站的身份提交信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2020-11066
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-11066
请登录查看更多情报信息。
Same Patch Batch · TYPO3 · 2020-05-13 · 6 CVEs total
| CVE-2020-11067 | 8.8 HIGH | Deserialization of Untrusted Data in TYPO3 CMS |
| CVE-2020-11069 | 8.0 HIGH | Cross-Site Request Forgery in TYPO3 CMS |
| CVE-2020-11065 | 5.4 MEDIUM | Cross-Site Scripting in TYPO3 CMS |
| CVE-2020-11064 | 5.4 MEDIUM | Cross-Site Scripting in TYPO3 CMS |
| CVE-2020-11063 | 3.7 LOW | Observable Response Discrepancy in TYPO3 CMS |
IV. Related Vulnerabilities
Same product: TYPO3 CMS
- CVE-2026-6553
TYPO3 CMS Stores Cleartext Password in User Settings Module - CVE-2026-0859
TYPO3 CMS Allows Insecure Deserialization via Mailer File Sp - CVE-2025-59022
TYPO3 CMS Allows Broken Access Control in Recycler Module - CVE-2025-59021
TYPO3 CMS Allows Broken Access Control in Redirects Module - CVE-2025-59020
TYPO3 CMS Allows Broken Access Control in Edit Document Cont
Same vendor: TYPO3
- CVE-2026-6553
TYPO3 CMS Stores Cleartext Password in User Settings Module - CVE-2026-4208
Authentication Bypass in extension "E-Mail MFA Provider" (mf - CVE-2026-4202
Broken Access Control in extension "Redirect Tab" - CVE-2026-1323
Insecure Deserialization in extension "Mailqueue" (mailqueue - CVE-2026-0895
Insecure Deserialization in extension "Mailqueue" (mailqueue
Same weakness: CWE-915
- CVE-2025-14341
Input Data Manipulation in DivvyDrive Information Technologi - CVE-2026-41139
Unsafe array index getter in mathjs - CVE-2026-33453
Apache Camel: CoAP URI Query Parameter to Exchange Header In - CVE-2026-42044
Axios: Invisible JSON Response Tampering via Prototype Pollu - CVE-2026-40897
Math.js: Unsafe object property setter in mathjs
V. Comments for CVE-2020-11066
No comments yet