CVE-2015-10106 in mh_httpbl Extension情報

要約

〜によって MITRE • 2023年05月28日

** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical was found in mback2k mh_httpbl Extension up to 1.1.7 on TYPO3. This vulnerability affects the function moduleContent of the file mod1/index.php. The manipulation leads to sql injection. The attack can be initiated remotely. Upgrading to version 1.1.8 is able to address this issue. The name of the patch is 429f50f4e4795b20dae06735b41fb94f010722bf. It is recommended to upgrade the affected component. VDB-230086 is the identifier assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

VulDB

予約する

2023年05月27日

公開

2023年05月28日

モデレーション

承諾済み

エントリ

VDB-230086

CPE

準備完了

CWE

CWE-89 (確認済み)

CVSS

8.8 (NVD)

EPSS

0.00351

KEV

いいえ

アクティビティ

非常低い

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-10106
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-10106
CVE Details	https://www.cvedetails.com/cve/CVE-2015-10106/

◂ 前概要次 ▸

Do you need the next level of professionalism?

Upgrade your account now!