Lucene search

[email protected]CVE-2013-4682

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-4682

2022-10-0316:14:56

CWE-89

[email protected]

web.nvd.nist.gov

cve-2013-4682

sql injection

multishop extension

typo3

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

56.3%

JSON

SQL injection vulnerability in the Multishop extension before 2.0.39 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected configurations

NVD

Node

bas_van_beekmultishopRange≤2.0.38

bas_van_beekmultishopMatch0.0.2

bas_van_beekmultishopMatch0.0.3

bas_van_beekmultishopMatch0.0.4

bas_van_beekmultishopMatch0.0.5

bas_van_beekmultishopMatch0.0.6

bas_van_beekmultishopMatch0.0.7

bas_van_beekmultishopMatch0.0.8

bas_van_beekmultishopMatch0.0.9

bas_van_beekmultishopMatch0.0.10

bas_van_beekmultishopMatch0.0.11

bas_van_beekmultishopMatch0.0.12

bas_van_beekmultishopMatch0.0.13

bas_van_beekmultishopMatch0.0.14

bas_van_beekmultishopMatch0.0.15

bas_van_beekmultishopMatch0.0.16

bas_van_beekmultishopMatch0.0.17

bas_van_beekmultishopMatch0.0.18

bas_van_beekmultishopMatch0.0.19

bas_van_beekmultishopMatch0.0.20

bas_van_beekmultishopMatch1.0.0

bas_van_beekmultishopMatch1.0.1

bas_van_beekmultishopMatch1.0.2

bas_van_beekmultishopMatch1.0.3

bas_van_beekmultishopMatch1.0.4

bas_van_beekmultishopMatch1.0.5

bas_van_beekmultishopMatch1.0.6

bas_van_beekmultishopMatch1.0.7

bas_van_beekmultishopMatch1.0.8

bas_van_beekmultishopMatch1.0.9

bas_van_beekmultishopMatch1.0.10

bas_van_beekmultishopMatch1.0.11

bas_van_beekmultishopMatch1.0.12

bas_van_beekmultishopMatch1.0.13

bas_van_beekmultishopMatch1.0.14

bas_van_beekmultishopMatch1.0.15

bas_van_beekmultishopMatch1.0.16

bas_van_beekmultishopMatch1.0.17

bas_van_beekmultishopMatch1.0.18

bas_van_beekmultishopMatch1.0.19

bas_van_beekmultishopMatch1.0.20

bas_van_beekmultishopMatch1.0.21

bas_van_beekmultishopMatch1.0.22

bas_van_beekmultishopMatch1.0.23

bas_van_beekmultishopMatch1.0.24

bas_van_beekmultishopMatch1.0.25

bas_van_beekmultishopMatch1.0.26

bas_van_beekmultishopMatch1.0.27

bas_van_beekmultishopMatch1.0.28

bas_van_beekmultishopMatch1.0.29

bas_van_beekmultishopMatch1.0.30

bas_van_beekmultishopMatch1.0.31

bas_van_beekmultishopMatch1.0.32

bas_van_beekmultishopMatch1.0.33

bas_van_beekmultishopMatch1.0.34

bas_van_beekmultishopMatch1.0.35

bas_van_beekmultishopMatch1.0.36

bas_van_beekmultishopMatch1.0.37

bas_van_beekmultishopMatch1.0.38

bas_van_beekmultishopMatch1.0.39

bas_van_beekmultishopMatch2.0.0

bas_van_beekmultishopMatch2.0.1

bas_van_beekmultishopMatch2.0.2

bas_van_beekmultishopMatch2.0.3

bas_van_beekmultishopMatch2.0.4

bas_van_beekmultishopMatch2.0.5

bas_van_beekmultishopMatch2.0.6

bas_van_beekmultishopMatch2.0.7

bas_van_beekmultishopMatch2.0.8

bas_van_beekmultishopMatch2.0.9

bas_van_beekmultishopMatch2.0.10

bas_van_beekmultishopMatch2.0.11

bas_van_beekmultishopMatch2.0.12

bas_van_beekmultishopMatch2.0.13

bas_van_beekmultishopMatch2.0.14

bas_van_beekmultishopMatch2.0.15

bas_van_beekmultishopMatch2.0.16

bas_van_beekmultishopMatch2.0.17

bas_van_beekmultishopMatch2.0.18

bas_van_beekmultishopMatch2.0.19

bas_van_beekmultishopMatch2.0.20

bas_van_beekmultishopMatch2.0.21

bas_van_beekmultishopMatch2.0.22

bas_van_beekmultishopMatch2.0.23

bas_van_beekmultishopMatch2.0.24

bas_van_beekmultishopMatch2.0.25

bas_van_beekmultishopMatch2.0.26

bas_van_beekmultishopMatch2.0.28

bas_van_beekmultishopMatch2.0.29

bas_van_beekmultishopMatch2.0.31

bas_van_beekmultishopMatch2.0.32

bas_van_beekmultishopMatch2.0.33

bas_van_beekmultishopMatch2.0.34

bas_van_beekmultishopMatch2.0.35

bas_van_beekmultishopMatch2.0.36

bas_van_beekmultishopMatch2.0.37

AND

typo3typo3Match-

CPENameOperatorVersion
bas_van_beek:multishopbas van beek multishople2.0.38
bas_van_beek:multishopbas van beek multishopeq0.0.2
bas_van_beek:multishopbas van beek multishopeq0.0.3
bas_van_beek:multishopbas van beek multishopeq0.0.4
bas_van_beek:multishopbas van beek multishopeq0.0.5
bas_van_beek:multishopbas van beek multishopeq0.0.6
bas_van_beek:multishopbas van beek multishopeq0.0.7
bas_van_beek:multishopbas van beek multishopeq0.0.8
bas_van_beek:multishopbas van beek multishopeq0.0.9
bas_van_beek:multishopbas van beek multishopeq0.0.10

CPE	Name	Operator	Version
bas_van_beek:multishop	bas van beek multishop	le	2.0.38
bas_van_beek:multishop	bas van beek multishop	eq	0.0.2
bas_van_beek:multishop	bas van beek multishop	eq	0.0.3
bas_van_beek:multishop	bas van beek multishop	eq	0.0.4
bas_van_beek:multishop	bas van beek multishop	eq	0.0.5
bas_van_beek:multishop	bas van beek multishop	eq	0.0.6
bas_van_beek:multishop	bas van beek multishop	eq	0.0.7
bas_van_beek:multishop	bas van beek multishop	eq	0.0.8
bas_van_beek:multishop	bas van beek multishop	eq	0.0.9
bas_van_beek:multishop	bas van beek multishop	eq	0.0.10

Rows per page:

1-10 of 961

References

secunia.com/advisories/53441

typo3.org/extensions/repository/view/multishop

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-009-1/

www.securityfocus.com/bid/60271

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

56.3%

JSON

Related for CVE-2013-4682

cvelist1 prion1 nvd1