CVE-2015-2803 in Akronymmanager Extensioninfo

Summary

SQL injection vulnerability in mod1/index.php in the Akronymmanager (sb_akronymmanager) extension before 7.0.0 for TYPO3 allows remote authenticated users with permission to maintain acronyms to execute arbitrary SQL commands via the id parameter.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

03/30/2015

Disclosure

06/17/2015

CPE

ready

Exploit

Download

CVSS

6.3

EPSS

0.04293

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2015-2803
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2015-2803
CVE Detailshttps://www.cvedetails.com/cve/CVE-2015-2803/

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!