CVE-2008-6462

SQL injection vulnerability in the My quiz and poll (myquizpoll) extension before 0.1.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:kurt_gusbeth:myquizpoll:*:*:*:*:*:*:*:*
cpe:2.3:a:kurt_gusbeth:myquizpoll:0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:kurt_gusbeth:myquizpoll:0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-03-13 10:30

Updated : 2024-02-28 11:21


NVD link : CVE-2008-6462

Mitre link : CVE-2008-6462

CVE.ORG link : CVE-2008-6462


JSON object : View

Products Affected

typo3

  • typo3

kurt_gusbeth

  • myquizpoll
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')