Description

contao prior to 2.11.4 has a sql injection vulnerability

Remediation

References

CVE-2012-4383

Related Vulnerabilities

Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-20187)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0127)

WordPress Plugin WP Users Exporter CSV Injection (1.4.2)

WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.30)

WordPress Plugin Yasr-Yet Another Stars Rating SQL Injection (0.9.0)

Severity

High

Classification

CVE-2012-4383 CWE-138 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities