SQL injection vulnerability in the Multishop extension before 2.0.39 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
AV:N/AC:L/Au:N/C:P/I:P/A:P
Vendors | Products |
---|---|
Bas Van Beek |
|
Typo3 |
|
Configuration 1 [-]
AND |
|
References
Link | Resource |
---|---|
http://secunia.com/advisories/53441 | Vendor Advisory |
http://typo3.org/extensions/repository/view/multishop | Patch |
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009-1/ | Vendor Advisory |
http://www.securityfocus.com/bid/60271 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:14:56
Updated: 2022-10-03T16:14:56
Reserved: 2022-10-03T00:00:00
Link: CVE-2013-4682
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-06-25T18:55:01.337
Modified: 2013-10-11T17:59:07.640
Link: CVE-2013-4682
JSON object: View
Redhat Information
No data.
CWE