|
294231
|
- |
|
claus_due
|
sysutils
|
The System Utilities (sysutils) extension 1.0.3 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unspecified vectors related to improper "protection" of the "backup o…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1078
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294232
|
- |
|
manfred_egger
|
bc_post2facebook
|
SQL injection vulnerability in the Post data records to facebook (bc_post2facebook) extension before 0.2.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-1077
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294233
|
- |
|
robert_gonda
|
rtg_files
|
Cross-site scripting (XSS) vulnerability in the Documents download (rtg_files) extension before 1.5.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1076
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294234
|
- |
|
robert_gonda
|
rtg_files
|
SQL injection vulnerability in the Documents download (rtg_files) extension before 1.5.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-1075
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294235
|
- |
|
typo3
|
mm_whtppr
|
SQL injection vulnerability in the White Papers (mm_whtppr) extension 0.0.4 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-1074
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294236
|
- |
|
typo3
|
toi_category
|
Cross-site scripting (XSS) vulnerability in the Category-System (toi_category) extension 0.6.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vec…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1073
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294237
|
- |
|
typo3
|
toi_category
|
SQL injection vulnerability in the Category-System (toi_category) extension 0.6.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-1072
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294238
|
- |
|
mathieu_vidal
|
mv_cooking
|
SQL injection vulnerability in the Kitchen recipe (mv_cooking) extension before 0.4.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the …
|
CWE-89
SQL Injection
|
CVE-2012-1071
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294239
|
- |
|
netcreators
|
irfaq
|
Cross-site scripting (XSS) vulnerability in the Modern FAQ (irfaq) extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspeci…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1070
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294240
|
- |
|
instantphp
|
lknsupport
|
Cross-site scripting (XSS) vulnerability in module/kb/search_word in the search module in lknSupport allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2012-1069
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
