6 matches found
EUVD-2008-5584
Malware in sbrugna...
Commerce extension for TYPO3 vulnerable to Cross-site Scripting
Cross-site scripting XSS vulnerability in the Commerce extension before 0.9.9 for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-4963
CVE-2009-4963 concerns the TYPO3 Commerce extension prior to 0.9.9, where an XSS vulnerability allows authenticated users to inject arbitrary script/HTML via unspecified vectors. The Red Hat/EUVD/GHSA OSV references confirm the same description across multiple sources, but the provided documents ...
CVE-2008-5609
SQL injection vulnerability in the Commerce extension 0.9.6 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in the Commerce extension 0.9.6 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2008-5609
CVE-2008-5609 describes an SQL injection vulnerability in the TYPO3 Commerce extension (versions 0.9.6 and earlier). The underlying issue is a SQL injection flaw that allows remote attackers to execute arbitrary SQL commands via unspecified vectors. The affected product is TYPO3 with the Commerce...