CVE-2008-4656

Description

SQL injection vulnerability in the Frontend Users View (feusersview) 0.1.6 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Related CPE's

atypo3frontend_users_view0.1.3*******

atypo3frontend_users_view********

atypo3frontend_users_view0.1.2*******

atypo3typo3********

References

http://typo3.org/teams/security/security-bulletins/typo3-20081020-1/

31843

ADV-2008-2870

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:P/I:P/A:P

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

PARTIAL

IntegrityImpact

PARTIAL

AvailabilityImpact

PARTIAL

BaseScore

7.5

Created by Yello
About Severity.io