Lucene search
MitreCVE-2009-4966HistoryJul 28, 2010 - 2:43 p.m.
CVE-2009-4966
2010-07-2814:43:41
CWE-89
mitre
web.nvd.nist.gov
23
cve-2009-4966
sql injection
typo3
ast zipcodesearch
vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
48.5%
SQL injection vulnerability in the AST ZipCodeSearch (ast_addresszipsearch) extension 0.5.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Affected configurations
Node
elementeast_addresszipsearchMatch0.5.4
typo3typo3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| elemente | ast_addresszipsearch | 0.5.4 | cpe:2.3:a:elemente:ast_addresszipsearch:0.5.4:*:*:*:*:*:*:* |
| typo3 | typo3 | * | cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-4966
2010-07-27 18:39:00
prion
prion
Sql injection
2010-07-28 14:43:00
nvd
nvd
CVE-2009-4966
2010-07-28 14:43:41
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
48.5%
Related for CVE-2009-4966