Vulnerabilities > Kennziffer

DATE	CVE	VULNERABILITY TITLE	RISK
2014-12-02	CVE-2014-8874	Information Exposure vulnerability in Kennziffer KE Questionnaire The ke_questionnaire extension 2.5.2 and earlier for TYPO3 uses predictable names for the questionnaire answer forms, which makes it easier for remote attackers to obtain sensitive information via a direct request. network low complexity kennziffer CWE-200	5.0
2014-10-03	CVE-2014-6293	SQL Injection vulnerability in Kennziffer Statistics SQL injection vulnerability in the Statistics (ke_stats) extension before 1.1.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in February 2014. network low complexity kennziffer CWE-89	7.5
2014-09-11	CVE-2014-6235	Remote Code Execution vulnerability in Kennziffer KE Dompdf 0.0.3 Unspecified vulnerability in the ke DomPDF extension before 0.0.5 for TYPO3 allows remote attackers to execute arbitrary code via unknown vectors. network low complexity kennziffer	7.5
2013-08-16	CVE-2013-5307	Cross-Site Scripting vulnerability in Kennziffer KE Search Cross-site scripting (XSS) vulnerability in the Faceted Search (ke_search) extension before 1.4.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network kennziffer typo3 CWE-79	4.3
2013-08-16	CVE-2013-5302	SQL Injection vulnerability in Kennziffer KE Search SQL injection vulnerability in the Faceted Search (ke_search) extension before 1.4.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity kennziffer typo3 CWE-89	7.5

Vulnerabilities > Kennziffer {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Kennziffer"}]}

Vulnerabilities > Kennziffer