Vulnerabilities > Kennziffer > Statistics

DATE CVE VULNERABILITY TITLE RISK
2014-10-03 CVE-2014-6293 SQL Injection vulnerability in Kennziffer Statistics
SQL injection vulnerability in the Statistics (ke_stats) extension before 1.1.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in February 2014.
network
low complexity
kennziffer CWE-89
7.5
7.5