Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
typo3 typo3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-4967
SQL injection vulnerability in the Car (car) extension prior to 0.1.1 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Jochen Rieger Car
7.5
CVSSv2
CVE-2009-4969
SQL injection vulnerability in the Solidbase Bannermanagement (SBbanner) extension 1.0.1 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Typo3 Sbanner 1.0.1
7.5
CVSSv2
CVE-2009-4971
SQL injection vulnerability in the AJAX Chat (vjchat) extension prior to 0.3.3 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Vincent Tietz Vjchat 0.3.1
Vincent Tietz Vjchat 0.2.7
Vincent Tietz Vjchat 0.2.6
Vincent Tietz Vjchat
Vincent Tietz Vjchat 0.3.0
7.5
CVSSv2
CVE-2009-4965
SQL injection vulnerability in the AIRware Lexicon (air_lexicon) extension 0.0.1 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Thomas Waggershauser Air Lexicon 0.0.1
7.5
CVSSv2
CVE-2009-4968
SQL injection vulnerability in the Event Registration (event_registr) extension 1.0.0 and previous versions for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Christian Ehmann Event Registr
7.5
CVSSv2
CVE-2009-4970
SQL injection vulnerability in the t3m_affiliate extension 0.5.0 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Typo3-macher T3m Affiliate 0.5.0
7.5
CVSSv2
CVE-2009-4950
SQL injection vulnerability in the A21glossary Advanced Output (a21glossary_advanced_output) extension prior to 0.1.12 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Tim Lochmueller \\& Thomas Buss A21glossary Advanced Output
Tim Lochmueller \\& Thomas Buss A21glossary Advanced Output 0.1.9
Tim Lochmueller \\& Thomas Buss A21glossary Advanced Output 0.1.8
Tim Lochmueller \\& Thomas Buss A21glossary Advanced Output 0.1.6
Tim Lochmueller \\& Thomas Buss A21glossary Advanced Output 0.1.7
7.5
CVSSv2
CVE-2009-4954
SQL injection vulnerability in the Versatile Calendar Extension [VCE] (sk_calendar) extension prior to 0.3.4 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Websedit Sk Calendar 0.2.2
Websedit Sk Calendar 0.2.1
Websedit Sk Calendar 0.2.0
Websedit Sk Calendar 0.3.2
Websedit Sk Calendar 0.3.1
Websedit Sk Calendar 0.3.0
Websedit Sk Calendar 0.1.0
Websedit Sk Calendar
Websedit Sk Calendar 0.1.1
7.5
CVSSv2
CVE-2009-4955
SQL injection vulnerability in the ultraCards (th_ultracards) extension prior to 0.5.1 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Thomas Hempel Th Ultracards 0.4.2
Thomas Hempel Th Ultracards 0.4.1
Thomas Hempel Th Ultracards 0.4.0
Thomas Hempel Th Ultracards
Thomas Hempel Th Ultracards 0.3.0
7.5
CVSSv2
CVE-2009-4949
SQL injection vulnerability in the Store Locator extension prior to 1.2.8 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Joachim Ruhs Locator
Joachim Ruhs Locator 1.1.8
Joachim Ruhs Locator 1.1.0
Joachim Ruhs Locator 1.0.6
Joachim Ruhs Locator 1.0.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »