Lucene search
HistoryDec 17, 2009 - 5:30 p.m.
CVE-2009-4337
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.002
Percentile
65.0%
SQL injection vulnerability in the Diocese of Portsmouth Calendar (pd_calendar) extension 0.4.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors, a different issue than CVE-2008-6691.
Affected configurations
Node
simon_rundellpd_calendar_todayRange≤0.4.1
ORsimon_rundellpd_calendar_todayMatch0.0.3
typo3typo3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| simon_rundell | pd_calendar_today | * | cpe:2.3:a:simon_rundell:pd_calendar_today:*:*:*:*:*:*:*:* |
| simon_rundell | pd_calendar_today | 0.0.3 | cpe:2.3:a:simon_rundell:pd_calendar_today:0.0.3:*:*:*:*:*:*:* |
| typo3 | typo3 | * | cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-4337
2009-12-17 17:00:00
CVE-2008-6691
2009-04-10 15:00:00
cve
cve
CVE-2009-4337
2009-12-17 17:30:00
CVE-2008-6691
2009-04-10 22:00:00
prion
prion
Sql injection
2009-12-17 17:30:00
Sql injection
2009-04-10 22:00:00
nvd
nvd
CVE-2008-6691
2009-04-10 22:00:00
openvas
openvas
Debian Security Advisory DSA 1983-1 (wireshark)
2010-02-10 00:00:00
debian
debian
[SECURITY] [DSA 1983-1] New Wireshark packages fix several vulnerabilities
2010-01-31 13:58:49
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.002
Percentile
65.0%
Related for NVD:CVE-2009-4337