4 matches found
CVE-2009-4954
SQL injection vulnerability in the Versatile Calendar Extension VCE skcalendar extension before 0.3.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
EUVD-2009-4916
Malware in sbrugna...
CVE-2009-4954
SQL injection vulnerability in the Versatile Calendar Extension VCE skcalendar extension before 0.3.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2009-4954
CVE-2009-4954 describes an SQL injection in the TYPO3 VCE plug-in Versatile Calendar Extension (sk_calendar) before version 0.3.4. Affected software: TYPO3 environment using sk_calendar prior to 0.3.4. Root cause: improper handling of input in the extension, enabling an attacker to inject arbitra...