Sql injection

2010-07-2814:43:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

51.6%

JSON

SQL injection vulnerability in the AJAX Chat (vjchat) extension before 0.3.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CPENameOperatorVersion
vjchatle0.3.2
vjchateq0.2.6
vjchateq0.2.7
vjchateq0.3.0
vjchateq0.3.1

Name	Operator	Version
vjchat	le	0.3.2
vjchat	eq	0.2.6
vjchat	eq	0.2.7
vjchat	eq	0.3.0
vjchat	eq	0.3.1

References

typo3.org/teams/security/security-bulletins/typo3-sa-2009-013/

www.securityfocus.com/bid/36141

www.vupen.com/english/advisories/2009/2411