N/A

SQL injection vulnerability in the "FAQ - Frequently Asked Questions" (js_faq) extension before 1.2.1 for TYPO3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

N/A

N/A

TYPO3 FAQ - Frequently Asked Questions扩展SQL注入漏洞

TYPO3是瑞士TYPO3协会维护的一套免费开源的内容管理系统(框架)(CMS/CMF)。FAQ - Frequently Asked Questions（js_faq）是其中的一个常见问题扩展插件。 TYPO3 FAQ - Frequently Asked Questions扩展1.2.1之前版本中存在SQL注入漏洞。远程攻击者可利用该漏洞执行任意SQL命令。

N/A

N/A