CVE-2009-4392
The CVE-2009-4392 entry concerns a SQL injection vulnerability in the TYPO3 XDS Staff List (xds_staff) extension, affected in version 0.0.3 and earlier. The underlying issue allows remote attackers to execute arbitrary SQL commands via unspecified vectors. The available documents confirm the prod...