7.5
CVSSv2

CVE-2010-4950

Published: 09/10/2011 Updated: 14/05/2012
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

SQL injection vulnerability in the Event (event) extension prior to 0.3.7 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.

Affected Products

Vendor Product Versions
Joachim RuhsEvent0.2.2, 0.2.4, 0.2.5, 0.2.7, 0.3.4