CVE-2009-4711

2010-03-1521:00:00

mitre

www.cve.org

cve-2009-4711

sql injection

cooluri extension

typo3

remote attackers

arbitrary sql commands

vulnerability

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

51.1%

JSON

SQL injection vulnerability in the CoolURI (cooluri) extension before 1.0.16 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2008-6686.

References

secunia.com/advisories/36082

typo3.org/teams/security/security-bulletins/typo3-sa-2009-010/

www.securityfocus.com/bid/35872