Moderate severityNVD Advisory· Published Dec 2, 2009· Updated Apr 23, 2026
CVE-2009-4160
CVE-2009-4160
Description
Unspecified vulnerability in the Simple download-system with counter and categories (kk_downloader) extension 1.2.1 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown attack vectors.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
jweiland/kk-downloaderPackagist | < 1.2.2 | 1.2.2 |
Affected products
5cpe:2.3:a:kurt_kunig:kk_downloader:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:kurt_kunig:kk_downloader:*:*:*:*:*:*:*:*range: <=1.2.1
- cpe:2.3:a:kurt_kunig:kk_downloader:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:kurt_kunig:kk_downloader:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:kurt_kunig:kk_downloader:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:kurt_kunig:kk_downloader:1.2.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- typo3.org/teams/security/security-bulletins/typo3-sa-2009-017/nvdPatchVendor Advisory
- www.securityfocus.com/bid/37168nvdPatch
- secunia.com/advisories/37550nvdVendor Advisory
- github.com/advisories/GHSA-p65f-652v-35r2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2009-4160ghsaADVISORY
- web.archive.org/web/20091219105714/http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-017ghsaWEB
- web.archive.org/web/20200228220902/http://www.securityfocus.com/bid/37168ghsaWEB
News mentions
0No linked articles in our index yet.