Lucene search

K
cve[email protected]CVE-2008-4656
HistoryOct 22, 2008 - 12:11 a.m.

CVE-2008-4656

2008-10-2200:11:51
CWE-89
web.nvd.nist.gov
21
cve
2008
4656
sql injection
typo3
extension

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

49.8%

SQL injection vulnerability in the Frontend Users View (feusersview) 0.1.6 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected configurations

NVD
Node
typo3frontend_users_viewRange0.1.6
OR
typo3frontend_users_viewMatch0.1.2
OR
typo3frontend_users_viewMatch0.1.3
AND
typo3typo3

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

49.8%

Related for CVE-2008-4656