CVE-2008-5087

Description

SQL injection vulnerability in TYPO3 Another Backend Login (wrg_anotherbelogin) extension before 0.0.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Related CPE's

atypo3typo3********

atypo3another_backend_login0.0.2*******

atypo3another_backend_login********

atypo3another_backend_login0.0.1*******

References

http://typo3.org/teams/security/security-bulletins/typo3-20080919-1/

Vendor Advisory

31266

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:P/I:P/A:P

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

PARTIAL

IntegrityImpact

PARTIAL

AvailabilityImpact

PARTIAL

BaseScore

7.5

Created by Yello
About Severity.io