| Vulnerability Name: | CCN-69748 |
| Published: | 2011-08-29 |
| Updated: | 2011-08-29 |
| Summary: | The Events extension for TYPO3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to an unspecified script, which could allow the attacker to view, add, modify or delete information in the back-end database. |
| CVSS v3 Severity: | |
| CVSS v2 Severity: | |
| Vulnerability Consequences: | Data Manipulation |
| References: | Source: CCN Type: TYPO3 Web Site TYPO3 - the Enterprise Open Source CMS: Home Source: CCN Type: TYPO3-SA-2011-006 Several vulnerabilities in third party extensions Source: XF Type: UNKNOWN julleevents-unspecified-sql-injection(69748) |
| Vulnerable Configuration: | Configuration CCN 1: Denotes that component is vulnerable |
| BACK | |