High severity7.5NVD Advisory· Published Oct 15, 2017· Updated Jun 17, 2026
CVE-2017-15363
CVE-2017-15363
Description
Directory traversal vulnerability in public/examples/resources/getsource.php in Luracast Restler through 3.0.0, as used in the restler extension before 1.7.1 for TYPO3, allows remote attackers to read arbitrary files via the file parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
aoe/restlerPackagist | < 1.7.1 | 1.7.1 |
luracast/restlerPackagist | < 3.1.0 | 3.1.0 |
Affected products
4- ghsa-coords2 versions
< 1.7.1+ 1 more
- (no CPE)range: < 1.7.1
- (no CPE)range: < 3.1.0
Patches
Vulnerability mechanics
References
6- extensions.typo3.org/extension/download/restler/1.7.1/zip/nvdVendor Advisory
- extensions.typo3.org/extension/restler/nvdProductVendor Advisory
- github.com/advisories/GHSA-rvmg-xc29-rvxfghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-15363ghsaADVISORY
- extensions.typo3.org/extension/restlerghsaWEB
- github.com/AOEpeople/TYPO3_Restler/releases/tag/1.7.1ghsaWEB
News mentions
0No linked articles in our index yet.