Vulnerabilities > Inmedias > Statistics > 0.1.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-05-27 | CVE-2008-2451 | SQL Injection vulnerability in Inmedias Statistics Multiple SQL injection vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
2008-05-27 | CVE-2008-2450 | Cross-Site Scripting vulnerability in Inmedias Statistics Multiple cross-site scripting (XSS) vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |