CVE-2008-3053

TYPO3 SQL Frontend Extension < 1.0.11 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in the SQL Frontend (mh_omsqlio) extension 1.0.11 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

References (4)

Core 4

Core References

Patch x_refsource_confirm

http://typo3.org/teams/security/security-bulletins/typo3-20080701-1/

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/30885

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/30051

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/43483

Scores

EPSS 0.0040

EPSS Percentile 60.7%

Details

CWE

CWE-89

Status published

Products (12)

typo3/sql_frontend_extension 1.0.0

typo3/sql_frontend_extension 1.0.1

typo3/sql_frontend_extension 1.0.2

typo3/sql_frontend_extension 1.0.3

typo3/sql_frontend_extension 1.0.4

typo3/sql_frontend_extension 1.0.5

typo3/sql_frontend_extension 1.0.6

typo3/sql_frontend_extension 1.0.7

typo3/sql_frontend_extension 1.0.8

typo3/sql_frontend_extension 1.0.9

... and 2 more

Published Jul 07, 2008

Tracked Since Feb 18, 2026