CVE-2009-4803

Description

SQL injection vulnerability in the Accessibility Glossary (a21glossary) extension 0.4.10 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

• andreas_schwarzkopf / accessibility_glossary0.4.10
• andreas_schwarzkopf / accessibility_glossary0.4.0 – 0.4.0
• andreas_schwarzkopf / accessibility_glossary0.4.7 – 0.4.7
• andreas_schwarzkopf / accessibility_glossary0.4.8 – 0.4.8
• andreas_schwarzkopf / accessibility_glossary0.4.9 – 0.4.9

References

• MISChttp://typo3.org/teams/security/security-bulletins/typo3-sa-2009-003/
• MISChttp://www.securityfocus.com/bid/33997