SQL Injection in t3/dce

🗓️ 08 Jun 2021 20:23:12Reported by GitHub Advisory DatabaseType

SQL Injection in TYPO3 Dynamic Content Element (DCE) extensio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Typo3	SQL Injection in extension "Dynamic Content Element" (dce)	27 Apr 202100:00	–	typo3
CVE	CVE-2021-31777	28 Apr 202107:15	–	cve
Packet Storm	TYPO3 6.2.1 SQL Injection	3 May 202100:00	–	packetstorm
CNVD	TYPO3 Dynamic Content Element SQL注入漏洞	28 Apr 202100:00	–	cnvd
Cvelist	CVE-2021-31777	28 Apr 202106:24	–	cvelist
Prion	Sql injection	28 Apr 202107:15	–	prion
NVD	CVE-2021-31777	28 Apr 202107:15	–	nvd
OSV	SQL Injection in t3/dce	8 Jun 202120:12	–	osv
0day.today	TYPO3 6.2.1 SQL Injection Exploit	4 May 202100:00	–	zdt

Vulners

Node

t3 dceRange2.2.0–2.6.2

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-31777
bitbucket	www.bitbucket.org/ArminVieweg/dce/commits/998a2392f69f2153797c5ace6e8914ca309e70c7
excellium-services	www.excellium-services.com/cert-xlm-advisory/
packagist	www.packagist.org/packages/t3/dce
typo3	www.typo3.org/security/advisory/typo3-ext-sa-2021-005
packetstormsecurity	www.packetstormsecurity.com/files/162429/TYPO3-6.2.1-SQL-Injection.html
github	www.github.com/advisories/GHSA-5v5h-4w2g-gxxc

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Jun 2021 20:12Current

5.3Medium risk

Vulners AI Score5.3

CVSS24

CVSS34.9

EPSS0.00329

CWE-89