[HIGH] TYPO3 Backend Command Injection via Shell Metacharacters in Uploaded File Name

PKSA-3bnf-9x8r-4r22 CVE-2009-3631 GHSA-3cqw-pxgr-jhrm

Affected package: typo3/cms-backend

Affected version: >=4.3alpha1,<4.3beta2|>=4.2.0,<4.2.10|>=4.1.0,<4.1.13|<=4.0.13

Reported by:
GitHub