CVE-2008-4658

{"id": "CVE-2008-4658", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2008-10-22T00:11:51.243", "references": [{"url": "http://secunia.com/advisories/32342", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://typo3.org/extensions/repository/view/dmmjobcontrol/1.15.5/", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://typo3.org/teams/security/security-bulletins/typo3-20081020-1/", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/31840", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/2870", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/32342", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://typo3.org/extensions/repository/view/dmmjobcontrol/1.15.5/", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://typo3.org/teams/security/security-bulletins/typo3-20081020-1/", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/31840", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2008/2870", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in the JobControl (dmmjobcontrol) 1.15.4 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n SQL en la extensi\u00f3n JobControl (dmmjobcontrol) v1.15.4 y anteriores para TYPO3, permite a atacantes remotos ejecutar comandos SQL de su elecci\u00f3n a trav\u00e9s de vectores no especificados."}], "lastModified": "2024-11-21T00:52:12.960", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5F1C59B0-CDF2-4F9A-88C7-61E8F18590DB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:typo3:jobcontrol:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C03C24A7-8C42-4E9F-AB4E-DF4BED771448", "versionEndIncluding": "1.15.4"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DAAC766E-B1CD-46F4-AEFA-1E68768E8819"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5846A3C1-5C1C-4DC0-85EE-2FFBA0DFE1DF"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9F70BF5D-CBED-4A26-8200-9EDF8396B383"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E3B6D1E-15B4-43FE-A236-E4D02520DC2E"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "800F03FB-E265-476D-A291-B5F53C75A5BB"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E937CC1F-9F88-49A9-AD16-62ADAA8D55FD"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "819E4145-5FFE-49CA-91FC-75755478D0FA"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEA66AF6-0F8F-43F5-B0D5-A534338D4D0F"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1E12955-CBEC-4AEF-932F-9FE0D6B1A734"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72CF2A47-58B3-4628-9FAE-B2CED784562D"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CB6E779-77E7-490E-B57E-BD0D5596E54C"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78ACF2D8-AC99-43A3-8B8E-AC549E7BA815"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDEA5C33-E505-42DB-9B4C-99800907AD04"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E9B8495-828D-407D-9283-FB0FC7C3D756"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.8.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70497A42-264D-4C71-BEC5-613EB7D005CE"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "93B25DE6-B56A-4F43-95EC-469CF0A21728"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C167D767-5105-4342-95A9-4B062DA23198"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "006252F1-D4D8-46DB-AEFE-E96EBC17405E"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.9.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF1853DC-24BE-4F0F-9C16-19BFA3CFDB09"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.9.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1DD87AA7-1F71-433C-9D48-A4DF4B39C9A2"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.9.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B040E669-4DF9-4949-9699-8BA5650BEAE8"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61D6DC9A-FA53-43CF-B755-64F515BD3711"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.10.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8372FE47-D502-4BAF-A703-F2B9D3C8B32E"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.10.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC7B3F2A-4B80-4FA6-BA52-01675BCA00A0"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "875F2374-088E-411F-BFD4-6CC43F23DA36"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05336E07-D5DF-44BC-8B67-C7E802A0A27B"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.11.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3A97D89-C7B0-425C-90A9-00E59249ABE5"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.11.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85ED59D6-AE2A-494C-B98D-7D132FABB946"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46ABBEC8-C2DD-44BA-BB59-FC80A0C89433"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.13.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "237DE41B-CFB1-425F-93F2-513153DC001D"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.14.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD5BA8EE-A221-46E7-A23A-64198F367349"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.15.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B4656CCF-9C97-4DE0-9E4E-2069FA8867E0"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.15.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69CE8E4B-656A-4757-B631-A7B6B4BF56EF"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.15.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEFD7E36-EAE8-4937-B89F-A55C6387F743"}, {"criteria": "cpe:2.3:a:typo3:jobcontrol:1.15.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF276B5D-D830-43C3-B4C9-DD4147032861"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}