CVE-2013-4682

Опубликовано: 25 июн. 2013

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in the Multishop extension before 2.0.39 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Ссылки

http://secunia.com/advisories/53441
Vendor Advisory
http://typo3.org/extensions/repository/view/multishop
Patch
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009-1/
Vendor Advisory
http://www.securityfocus.com/bid/60271
http://secunia.com/advisories/53441
Vendor Advisory
http://typo3.org/extensions/repository/view/multishop
Patch
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009-1/
Vendor Advisory
http://www.securityfocus.com/bid/60271

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:bas_van_beek:multishop:*:*:*:*:*:*:*:*

Версия до 2.0.38 (включая)

cpe:2.3:a:bas_van_beek:multishop:0.0.2:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.3:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.4:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.5:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.6:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.7:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.8:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.9:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.10:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.11:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.12:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.13:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.14:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.15:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.16:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.17:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.18:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.19:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:0.0.20:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.6:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.7:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.8:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.9:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.10:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.11:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.12:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.13:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.14:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.15:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.16:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.17:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.18:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.19:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.20:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.21:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.22:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.23:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.24:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.25:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.26:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.27:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.28:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.29:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.30:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.31:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.32:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.33:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.34:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.35:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.36:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.37:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.38:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:1.0.39:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.3:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.4:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.5:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.6:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.7:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.8:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.9:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.10:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.11:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.12:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.13:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.14:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.15:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.16:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.17:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.18:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.19:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.20:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.21:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.22:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.23:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.24:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.25:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.26:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.28:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.29:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.31:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.32:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.33:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.34:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.35:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.36:*:*:*:*:*:*:*

cpe:2.3:a:bas_van_beek:multishop:2.0.37:*:*:*:*:*:*:*

cpe:2.3:a:typo3:typo3:-:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00397

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-v4fw-fh5c-xvjg

github

больше 3 лет назад

Multishop extension for TYPO3 has SQL Injection vulnerability