CVE-2015-4610

2015-06-1616:00:00

mitre

www.cve.org

7.9 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.4%

JSON

SQL injection vulnerability in the Store Locator (locator) extension before 3.3.1 for TYPO3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

References

typo3.org/extensions/repository/view/locator

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-009/

www.securityfocus.com/bid/75262