Vulnerabilities > FR Simon Rundell > STE Parish Admin
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-12-22 | CVE-2009-4401 | SQL Injection vulnerability in Fr.Simon Rundell STE Parish Admin SQL injection vulnerability in the Parish Administration Database (ste_parish_admin) extension 0.1.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2009-12-22 | CVE-2009-4400 | Cross-Site Scripting vulnerability in Fr.Simon Rundell STE Parish Admin Cross-site scripting (XSS) vulnerability in the Parish Administration Database (ste_parish_admin) extension 0.1.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |