Vulnerability Details CVE-2011-3584
The TYPO3 Core wec_discussion extension before 2.1.1 is vulnerable to SQL Injection due to improper sanitation of user-supplied input.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://access.redhat.com/security/cve/cve-2011-3584
- https://security-tracker.debian.org/tracker/CVE-2011-3584
- https://typo3.org/security/advisory/typo3-sa-2011-003/
- https://access.redhat.com/security/cve/cve-2011-3584
- https://security-tracker.debian.org/tracker/CVE-2011-3584
- https://typo3.org/security/advisory/typo3-sa-2011-003/
Products affected by CVE-2011-3584
-
cpe:2.3:a:guidestar:wec_discussion_forum:2.0.2
-
cpe:2.3:a:guidestar:wec_discussion_forum:2.0.3
-
cpe:2.3:a:guidestar:wec_discussion_forum:2.0.4
-
cpe:2.3:a:guidestar:wec_discussion_forum:2.1.0