Vulnerabilities > Snowflake > T3Blog > 0.6.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-03-02 | CVE-2010-0798 | SQL Injection vulnerability in Snowflake T3Blog 0.5.0/0.6.0/0.6.1 SQL injection vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-02 | CVE-2010-0797 | Cross-Site Scripting vulnerability in Snowflake T3Blog 0.5.0/0.6.0/0.6.1 Cross-site scripting (XSS) vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |