Description
SQL injection vulnerability in the auto BE User Registration (autobeuser) extension 0.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45255
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/48272
Vendor Advisory x_refsource_confirm
http://typo3.org/teams/security/security-bulletins/typo3-20080919-1/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/31239
Scores
EPSS
0.0040
EPSS Percentile
60.7%
Details
CWE
CWE-89
Status
published
Products (1)
typo3/autobeuser
< 0.0.2
Published
Mar 13, 2009
Tracked Since
Feb 18, 2026