NuytsTech Security

CVE-2014-3759

by ·

Multiple SQL injection vulnerabilities in the BibTex Publications (si_bibtex) extension 0.2.3 for TYPO3 allow remote attackers to execute arbitrary SQL commands via vectors related to the (1) search or (2) list functionality.

Date published : 2014-05-16

http://www.securityfocus.com/bid/67145

http://www.securityfocus.com/archive/1/531980/100/0/threaded

Tags: