Sql injection

2015-06-1616:59:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.4%

JSON

SQL injection vulnerability in the Store Locator (locator) extension before 3.3.1 for TYPO3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CPENameOperatorVersion
store_locatorle3.3.0

CPE	Name	Operator	Version
	store_locator	le	3.3.0

References

typo3.org/extensions/repository/view/locator

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-009/

www.securityfocus.com/bid/75262