RSS   Vulnerabilities for 'Wec discussion'   RSS

2013-06-27
 
CVE-2013-4720

CWE-89
 

 
SQL injection vulnerability in the WEC Discussion Forum extension before 2.1.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

 
2011-04-19
 
CVE-2011-1722

CWE-89
 

 
Multiple SQL injection vulnerabilities in WEC Discussion Forum (wec_discussion) extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011.

 


Copyright 2024, cxsecurity.com

 

Back to Top