2005-03-07 05:00:00
mitre
PUBLISHED
SQL injection vulnerability in a third party extension to TYPO3 allows remote attackers to execute arbitrary SQL commands via the category_uid parameter.