Описание
Multishop extension for TYPO3 has SQL Injection vulnerability
SQL injection vulnerability in the Multishop extension before 2.0.39 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-4682
- https://web.archive.org/web/20130701223430/http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009-1
- https://web.archive.org/web/20200229092533/http://www.securityfocus.com/bid/60271
- http://typo3.org/extensions/repository/view/multishop
Пакеты
Наименование
bvbmedia/multishop
composer
Затронутые версииВерсия исправления
< 2.0.39
2.0.39
Связанные уязвимости
nvd
больше 12 лет назад
SQL injection vulnerability in the Multishop extension before 2.0.39 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.