Vulnerabilities > Inmedias > Statistics > 0.1.0

DATE CVE VULNERABILITY TITLE RISK
2008-05-27 CVE-2008-2451 SQL Injection vulnerability in Inmedias Statistics
Multiple SQL injection vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
inmedias CWE-89
7.5
2008-05-27 CVE-2008-2450 Cross-Site Scripting vulnerability in Inmedias Statistics
Multiple cross-site scripting (XSS) vulnerabilities in the Statistics (aka ke_stats) extension 0.1.2 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
inmedias CWE-79
4.3