2 matches found
CVE-2014-3759
Multiple SQL injection vulnerabilities in the BibTex Publications sibibtex extension 0.2.3 for TYPO3 allow remote attackers to execute arbitrary SQL commands via vectors related to the 1 search or 2 list functionality...
CVE-2014-3759
CVE-2014-3759 refers to multiple SQL injection vulnerabilities in the TYPO3 extension BibTex Publications (si_bibtex) version 0.2.3. The root issue is improper handling/escaping of user input in the extension’s search and list functionality, allowing remote attackers to execute arbitrary SQL comm...