N/A

SQL injection vulnerability in the traditional frontend editing feature in the Frontend Editing subcomponent in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 allows remote authenticated users to execute arbitrary SQL commands via unspecified parameters.

N/A

N/A

TYPO3 前端编辑特性SQL注入漏洞

TYPO3 4.0.13版及其早期版本、4.1.13版之前的4.1.x版、4.2.10版之前的4.2.x版和4.3beta2版之前的4.3.x版的Frontend Editing子部件的传统前端编辑特性中的SQL注入漏洞允许远程已鉴别的用户借助未加规定参数，执行任意SQL指令。

N/A

N/A