SQL injection vulnerability in the Simple Gallery (sk_simplegallery) extension 0.0.9 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38796 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/
SQL injection vulnerability in the Book Reviews (sk_bookreview) extension 0.0.12 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38803 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/
SQL injection vulnerability in the SAV Filter Months (sav_filter_months) extension before 1.0.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38806 http://typo3.org/extensions/repository/view/sav_filter_months/1.0.5/
SQL injection vulnerability in the SAV Filter Selectors (sav_filter_selectors) extension before 1.0.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38804 http://typo3.org/extensions/repository/view/sav_filter_selectors/1.0.5/
SQL injection vulnerability in the SAV Filter Alphabetic (sav_filter_abc) extension before 1.0.9 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38801 http://typo3.org/extensions/repository/view/sav_filter_abc/1.0.9/
Cross-site scripting (XSS) vulnerability in the Reports Logfile View (reports_logview) extension 1.2.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38823...
SQL injection vulnerability in the Diocese of Portsmouth Database (pd_diocesedatabase) extension before 0.7.13 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38812 http://typo3.org/extensions/repository/view/pd_diocesedatabase/0.7.13/
SQL injection vulnerability in the CleanDB (nf_cleandb) extension 1.0.7 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38810 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/
Cross-site scripting (XSS) vulnerability in the myDashboard (mydashboard) extension 0.1.13 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38795 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/
SQL injection vulnerability in the MK Wastebasket (mk_wastebasket) extension 2.1.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38792 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/
SQL injection vulnerability in the Educator extension 0.1.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38789 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/
Cross-site scripting (XSS) vulnerability in the Sellector.com Widget Integration (chsellector) extension before 0.1.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38816 http://typo3.org/extensions/repository/view/chsellector/0.1.2/
Unspecified vulnerability in the Power Extension Manager (ch_lightem) extension 1.0.34 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38811 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/
SQL injection vulnerability in the Brainstorming extension 0.1.8 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Date published : 2010-03-19 http://www.securityfocus.com/bid/38798 http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-006/