Typo3 · Pt Extbase · CVE-2014-6289
**Name of the Vulnerable Software and Affected Versions**
yag extension versions prior to 3.0.1
pt extbase extension versions prior to 1.5.1
**Description**
The issue allows remote attackers to bypass access restrictions and execute arbitrary controller actions.
**Recommendations**
For yag extension versions prior to 3.0.1, update to version 3.0.1 or later.
For pt extbase extension versions prior to 1.5.1, update to version 1.5.1 or later.