Vulnerabilities

CVE-2011-3583

by Fred · 25/11/2019

It was found that Typo3 Core versions 4.5.0 – 4.5.5 uses prepared statements that, if the parameter values are not properly replaced, could lead to a SQL Injection vulnerability. This issue can only be exploited if two or more parameters are bound to the query and at least two come from user input.

Date published : 2019-11-25

https://access.redhat.com/security/cve/cve-2011-3583

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=641682

Similar

Tags: Cybersecurity Alert