2 matches found
CVE-2015-4609
SQL injection vulnerability in the wtdirectory extension before 1.4.2 for TYPO3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...
CVE-2015-4609
CVE-2015-4609 concerns a SQL injection in the TYPO3 wt_directory extension prior to 1.4.2. The vulnerability allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Affected component: TYPO3 wt_directory (extension). Root cause: unsafe handling of SQL queries ...