Description
SQL injection vulnerability in the Backend History module in TYPO3 4.5.x before 4.5.21, 4.6.x before 4.6.14, and 4.7.x before 4.7.6 allows remote authenticated backend users to execute arbitrary SQL commands via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin GA Universal Cross-Site Request Forgery (1.0)
WordPress Plugin Broken Link Checker PHAR Deserialization (1.11.16)
PHP Out-of-bounds Read Vulnerability (CVE-2019-11046)
WordPress 3.0.3 KSES Library Cross-Site Scripting Vulnerability (0.6.2 - 3.0.3)
WordPress Plugin Travelpayouts:All Travel Brands in One Place Cross-Site Request Forgery (1.0.16)