| CVE-2009-4704 |
medium |
— |
5.0 |
|
|
typo3 |
16y ago |
Unspecified vulnerability in the Webesse E-Card (ws_ecard) extension 1.0.2 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors. |
| CVE-2009-4703 |
high |
— |
7.5 |
|
|
typo3 |
16y ago |
SQL injection vulnerability in the Webesse Image Gallery (ws_gallery) extension 1.0.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. |
| CVE-2009-4702 |
high |
— |
7.5 |
|
|
markus_barchfeldtypo3 |
16y ago |
SQL injection vulnerability in the Tour Extension (pm_tour) extension before 0.0.13 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. |
| CVE-2009-4701 |
high |
— |
7.5 |
|
|
liviu_mitrofantypo3 |
16y ago |
SQL injection vulnerability in the Myth download (myth_download) extension 0.1.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. |
| CVE-2010-0798 |
high |
— |
7.5 |
|
|
snowflaketypo3 |
17y ago |
SQL injection vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. |
| CVE-2010-0797 |
medium |
— |
4.3 |
|
|
snowflaketypo3 |
17y ago |
Cross-site scripting (XSS) vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| CVE-2010-0286 |
medium |
— |
5.1 |
|
|
typo3 |
17y ago |
Unspecified vulnerability in the OpenID Identity Authentication extension in TYPO3 4.3.0 allows remote attackers to bypass authentication and gain access to a backend user account via unknown attack … |
