exploitDog

GHSA-pvw9-4hpx-qjf3

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in the jQuery autocomplete for indexed_search (rzautocomplete) extension before 0.0.9 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

SQL injection vulnerability in the jQuery autocomplete for indexed_search (rzautocomplete) extension before 0.0.9 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Ссылки

EPSS

Процентиль: 72%

0.00706

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2013-4634

nvd

больше 12 лет назад

SQL injection vulnerability in the jQuery autocomplete for indexed_search (rzautocomplete) extension before 0.0.9 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

EPSS

Процентиль: 72%

0.00706

Низкий

CVE ID

Дефекты

CWE-89