TYPO3 YATSE - Yet Another TYPO3 Search Engine Cross Site Scripting and SQL Injection Vulnerabilities

Bugtraq ID: 38808
Class: Input Validation Error
CVE: CVE-2010-1004
CVE-2010-1005
Remote: Yes
Local: No
Published: Mar 17 2010 12:00AM
Updated: Apr 13 2015 09:02PM
Credit: Georg Ringer
Vulnerable: Typo3 YATSE - Yet Another TYPO3 Search Engine 0.3.1
Not Vulnerable: Typo3 YATSE - Yet Another TYPO3 Search Engine 0.3.2


 

Privacy Statement
Copyright 2010, SecurityFocus