1 results (0.003 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2011-3584
https://notcve.org/view.php?id=CVE-2011-3584
The TYPO3 Core wec_discussion extension before 2.1.1 is vulnerable to SQL Injection due to improper sanitation of user-supplied input. La extensión TYPO3 Core wec_discussion versiones anteriores a 2.1.1, es vulnerable a una inyección SQL debido al saneamiento inapropiado de la entrada suministrada por el usuario. • https://access.redhat.com/security/cve/cve-2011-3584 https://security-tracker.debian.org/tracker/CVE-2011-3584 https://typo3.org/security/advisory/typo3-sa-2011-003 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •