CVE-2013-5322

Published Aug 20, 2013

Last updated 7 years ago

CVSS info 7.5

Overview

Description: SQL injection vulnerability in the CoolURI extension before 1.0.30 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-89

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4637E52B-035E-4D22-BE7C-41834F026D58",
            "versionEndIncluding": "1.0.20"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40EED73B-0E3B-4BB3-B9B5-92C1043BC312"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F5FAE80-A193-45B3-9437-8FCF251AA57C"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6504D7B-B1CC-4300-835F-F8E06A20185D"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10B929B6-4638-4CB4-8F24-9CD33F8B203A"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91D714C1-BE19-44FD-B6EE-A426C7FE7B69"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9D88A0D-125E-4770-9D32-E3F8DA3E8B97"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD691345-B5CA-491D-9274-8C1A448CC5AF"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E93508C-575E-4A1C-998D-133C9B404B85"
          },
          {
            "criteria": "cpe:2.3:a:jan_bednarik:cooluri:1.0.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A608B7C-BBAE-4EF5-ADEE-3D941348C84B"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:typo3:typo3:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E66C5ABA-7727-4562-A792-5E450098D520"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References