SQL Injection Vulnerability in TYPO3 Core wec_discussion Extension

SQL Injection Vulnerability in TYPO3 Core wec_discussion Extension

CVE-2011-3584 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The TYPO3 Core wec_discussion extension before 2.1.1 is vulnerable to SQL Injection due to improper sanitation of user-supplied input.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.