Lucene search

MitreCVELIST:CVE-2007-6381

HistoryDec 15, 2007 - 2:00 a.m.

CVE-2007-6381

2007-12-1502:00:00

mitre

www.cve.org

AI Score

7.7

Confidence

Low

EPSS

0.003

Percentile

66.1%

JSON

SQL injection vulnerability in the indexed_search system extension in TYPO3 3.x, 4.0 through 4.0.7, and 4.1 through 4.1.3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=457446

osvdb.org/39506

secunia.com/advisories/27969

secunia.com/advisories/28243

securitytracker.com/id?1019146

typo3.org/teams/security/security-bulletins/typo3-20071210-1/

www.debian.org/security/2007/dsa-1439

www.securityfocus.com/bid/26871

www.vupen.com/english/advisories/2007/4205

exchange.xforce.ibmcloud.com/vulnerabilities/39017