← volver
CVE-2013-1842

CVE-2013-1842

EPSS 3.1%
SQL injection vulnerability in the Extbase Framework in TYPO3 4.5.x before 4.5.24, 4.6.x before 4.6.17, 4.7.x before 4.7.9, and 6.0.x before 6.0.3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to "the Query Object Model and relation values."
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.opensuse.org/opensuse-updates/2013-03/msg00079.htmlhttp://osvdb.org/90925http://secunia.com/advisories/52433http://secunia.com/advisories/52638http://typo3.org/support/teamssecuritysecurity-bulletins/security-bulletins-single-view/article/sql-injection-and-open-redirection-in-typo3-core/http://www.debian.org/security/2013/dsa-2646http://www.openwall.com/lists/oss-security/2013/03/12/3http://www.securityfocus.com/bid/58330