EUVD-2015-1541

Malware in sbrugna...

SQL Injection in extension "Content Rating Extbase" (content_rating_extbase)

It has been discovered that the extension "Content Rating Extbase" contentratingextbase is susceptible to SQL Injection. Release Date: July 11, 2017 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 2.0.3 and below...

CVE-2015-1404

Cross-site scripting XSS vulnerability in the Content Rating Extbase extension 2.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-1404

Cross-site scripting XSS vulnerability in the Content Rating Extbase extension 2.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-1404

TYPO3 Content Rating Extbase extension (content_rating_extbase) vulnerable: versions 2.0.3 and older are affected. Root cause is improper escaping of user input in HTML and SQL contexts, enabling Cross-Site Scripting (XSS) and SQL Injection as described in TYPO3 security bulletin TYPO3-EXT-SA-201...

Multiple Input Validation Vulnerabilities in TYPO3 Content Rating Extbase Extension

TYPO3 is a free and open source content management system framework CMS/CMF maintained by the Swiss TYPO3 Association. Multiple input validation vulnerabilities exist in the TYPO3 Content Rating Extbase Extension, which can be exploited by attackers to steal cookie-based authentication credential...

Multiple vulnerabilities in Content Rating Extbase (content_rating_extbase)

It has been discovered that the extension "Content Rating Extbase" contentratingextbase is susceptible to Cross-Site Scripting and SQL Injection. Release Date: January 9, 2015 Bulletin Update: February 23, 2015 added CVEs Component Type: Third party extension. This extension is not a part of the...