26 matches found
EUVD-2008-3033
Malware in sbrugna...
EUVD-2008-6115
Malware in sbrugna...
EUVD-2008-6114
Malware in sbrugna...
EUVD-2008-3019
Malware in sbrugna...
EUVD-2011-1721
Malware in sbrugna...
CVE-2013-4720
SQL injection vulnerability in the WEC Discussion Forum extension before 2.1.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2013-4720
CVE-2013-4720 affects the WEC Discussion Forum extension for TYPO3, vulnerable in versions before 2.1.2. The issue is an SQL injection allowing remote attackers to execute arbitrary SQL via unspecified vectors. Exploitation details are not provided in the documents. Remediation: upgrade to versio...
CVE-2011-1722
Multiple SQL injection vulnerabilities in WEC Discussion Forum wecdiscussion extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011...
Sql injection
Multiple SQL injection vulnerabilities in WEC Discussion Forum wecdiscussion extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011...
CVE-2011-1722
Multiple SQL injection vulnerabilities in WEC Discussion Forum wecdiscussion extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011...
CVE-2011-1722
TYPO3 WEC Discussion Forum extension (wec_discussion) 2.1.0 and earlier contains multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via unspecified vectors. This CVE notes exploitation in the wild in April 2011. The connected documents confirm aff...
CVE-2011-1722
Multiple SQL injection vulnerabilities in WEC Discussion Forum wecdiscussion extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011...
SQL Injection vulnerabilities in extension "WEC Discussion Forum" (wec_discussion)
It has been discovered that the extension WEC Discussion Forum wecdiscussion is vulnerable to SQL Injection. Release Date: April 7, 2011 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 2.1.0 and all versions below...
VulnCheck KEV: CVE-2011-1722
Multiple SQL injection vulnerabilities in WEC Discussion Forum wecdiscussion extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the WEC Discussion Forum wecdiscussion extension 1.7.0 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-3029...
Sql injection
Multiple SQL injection vulnerabilities in the WEC Discussion Forum wecdiscussion extension 1.7.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2008-6144
Multiple cross-site scripting XSS vulnerabilities in the WEC Discussion Forum wecdiscussion extension 1.7.0 and earlier for TYPO3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-3029...
CVE-2008-6145
The CVE-2008-6145 entry concerns the TYPO3 WEC Discussion Forum (wec_discussion) extension, version 1.7.0 and earlier. The root cause is multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via unspecified vectors. The impact is remote code-like dat...
TYPO3 Security Bulletin
It has been discovered that the extension WEC Discussion Forum wecdiscussion is vulnerable to Cross-Site Scripting XSS and SQL injection. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.7.0 and all versions below...
Code injection
Unspecified vulnerability in the WEC Discussion Forum wecdiscussion extension 1.6.2 and earlier for TYPO3 allows attackers to execute arbitrary code via vectors related to "certain file types."...