Description

SQL injection vulnerability in the indexed_search system extension in TYPO3 3.x, 4.0 through 4.0.7, and 4.1 through 4.1.3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2007-6381

Related Vulnerabilities

MySQL CVE-2015-4913 Vulnerability (CVE-2015-4913)

Oracle HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-40438)

MySQL CVE-2016-0646 Vulnerability (CVE-2016-0646)

WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.21)

Apache Tomcat version older than 4.1.37

Severity

Medium

Classification

CVE-2007-6381 CWE-138

Tags

Missing Update Known Vulnerabilities