2 matches found
Sql injection
SQL injection vulnerability in the Diocese of Portsmouth Calendar pdcalendar extension 0.4.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors, a different issue than CVE-2008-6691...
CVE-2008-6691
The CVE-2008-6691 entry describes a SQL injection vulnerability in the TYPO3 Diocese of Portsmouth Calendar Today (pd_calendar_today) extension version 0.0.3. The issue allows remote attackers to execute arbitrary SQL commands via unknown vectors, indicating a vulnerability in the way user input ...