CVE-2015-4613

2015-06-1616:00:00

mitre

www.cve.org

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.9%

JSON

SQL injection vulnerability in the backend module in the Developer Log (devlog) extension before 2.11.4 for TYPO3 allows remote editors to execute arbitrary SQL commands via unspecified vectors.

References

typo3.org/extensions/repository/view/devlog

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2015-011/

www.securityfocus.com/bid/75257