Vulnerabilities > FR Simon Rundell > STE Prayer2

DATE CVE VULNERABILITY TITLE RISK
2009-12-22 CVE-2009-4395 Cross-Site Scripting vulnerability in Fr.Simon Rundell STE Prayer2 0.0.2
Cross-site scripting (XSS) vulnerability in the Random Prayer 2 (ste_prayer2) extension 0.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
4.3
2009-12-22 CVE-2009-4394 SQL Injection vulnerability in Fr.Simon Rundell STE Prayer2 0.0.2
SQL injection vulnerability in the Random Prayer 2 (ste_prayer2) extension 0.0.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
fr-simon-rundell typo3 CWE-89
7.5
2009-03-13 CVE-2008-6461 SQL Injection vulnerability in Fr.Simon Rundell STE Prayer2
SQL injection vulnerability in the Random Prayer 2 (ste_prayer2) extension before 0.0.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
typo3 fr-simon-rundell CWE-89
7.5