Vulnerabilities > Typo3

DATE	CVE	VULNERABILITY TITLE	RISK
2009-04-03	CVE-2008-6595	SQL Injection vulnerability in Typo3 PMK Rssnewsexport Extension SQL injection vulnerability in the pmk_rssnewsexport extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity typo3 CWE-89	7.5
2009-03-13	CVE-2008-6463	SQL Injection vulnerability in Fr.Simon Rundell PD Churchsearch SQL injection vulnerability in the Diocese of Portsmouth Church Search (pd_churchsearch) extension before 0.1.1, and 0.2.10 and earlier 0.2.x versions, an extension for TYPO3, allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity typo3 fr-simon-rundell CWE-89	7.5
2009-03-13	CVE-2008-6462	SQL Injection vulnerability in Kurt Gusbeth Myquizpoll 0.1.1/0.1.2/0.1.3 SQL injection vulnerability in the My quiz and poll (myquizpoll) extension before 0.1.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity kurt-gusbeth typo3 CWE-89	7.5
2009-03-13	CVE-2008-6461	SQL Injection vulnerability in Fr.Simon Rundell STE Prayer2 SQL injection vulnerability in the Random Prayer 2 (ste_prayer2) extension before 0.0.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity typo3 fr-simon-rundell CWE-89	7.5
2009-03-13	CVE-2008-6460	SQL Injection vulnerability in Mirko Werner MW Random Objects SQL injection vulnerability in the Simple Random Objects (mw_random_objects) extension 1.0.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity typo3 mirko-werner CWE-89	7.5
2009-03-13	CVE-2008-6459	SQL Injection vulnerability in Typo3 Autobeuser SQL injection vulnerability in the auto BE User Registration (autobeuser) extension 0.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity typo3 CWE-89	7.5
2009-03-13	CVE-2008-6458	SQL Injection vulnerability in Dieter Mayer FE Address Edit SQL injection vulnerability in the FE address edit for tt_address & direct mail (dmaddredit) extension 0.4.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity typo3 dieter-mayer CWE-89	7.5
2009-03-13	CVE-2008-6457	SQL Injection vulnerability in Walnutstreet Cgswigmore 0.1.0 SQL injection vulnerability in the Swigmore institute (cgswigmore) extension before 0.1.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity walnutstreet typo3 CWE-89	7.5
2009-03-13	CVE-2008-6456	SQL Injection vulnerability in Martin Helmich Hbook SQL injection vulnerability in the HBook (h_book) extension 2.3.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. network low complexity martin-helmich typo3 CWE-89	7.5
2009-03-05	CVE-2009-0816	Cross-Site Scripting vulnerability in Typo3 Multiple cross-site scripting (XSS) vulnerabilities in the backend user interface in TYPO3 3.3.x through 3.8.x, 4.0 before 4.0.12, 4.1 before 4.1.10, 4.2 before 4.2.6, and 4.3alpha1 allow remote attackers to inject arbitrary web script or HTML via unspecified fields. network typo3 CWE-79	4.3

Vulnerabilities > Typo3 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Typo3"}]}

Vulnerabilities > Typo3