7 matches found
EUVD-2015-1541
Malware in sbrugna...
SQL Injection in extension "Content Rating Extbase" (content_rating_extbase)
It has been discovered that the extension "Content Rating Extbase" contentratingextbase is susceptible to SQL Injection. Release Date: July 11, 2017 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 2.0.3 and below...
CVE-2015-1404
Cross-site scripting XSS vulnerability in the Content Rating Extbase extension 2.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-1404
TYPO3 Content Rating Extbase extension (content_rating_extbase) vulnerable: versions 2.0.3 and older are affected. Root cause is improper escaping of user input in HTML and SQL contexts, enabling Cross-Site Scripting (XSS) and SQL Injection as described in TYPO3 security bulletin TYPO3-EXT-SA-201...
CVE-2015-1404
Cross-site scripting XSS vulnerability in the Content Rating Extbase extension 2.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Multiple Input Validation Vulnerabilities in TYPO3 Content Rating Extbase Extension
TYPO3 is a free and open source content management system framework CMS/CMF maintained by the Swiss TYPO3 Association. Multiple input validation vulnerabilities exist in the TYPO3 Content Rating Extbase Extension, which can be exploited by attackers to steal cookie-based authentication credential...
Multiple vulnerabilities in Content Rating Extbase (content_rating_extbase)
It has been discovered that the extension "Content Rating Extbase" contentratingextbase is susceptible to Cross-Site Scripting and SQL Injection. Release Date: January 9, 2015 Bulletin Update: February 23, 2015 added CVEs Component Type: Third party extension. This extension is not a part of the...