OSVDB ID: 46389

Title: Diocese of Portsmouth Training Courses (pd_trainingcourses) Extension for TYPO3 Unspecified SQL Injection

Info

Disclosure

Jun 19, 2008

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Solution: Discontinued Product
Exploit: Exploit Unknown
Disclosure: Vendor Verified
OSVDB: Web Related

Solution

The vendor has discontinued this product and therefore has no patch or upgrade that mitigates this problem. It is recommended that an alternate software package be used in its place.

Products

Unknown or Incomplete

References

CVE ID: 2008-6692 (see also: NVD)
Bugtraq ID: 29822
Secunia Advisory ID: 30737
ISS X-Force ID: 43207
Related OSVDB ID: 46382 46383 46384 46385 46387 46388 46390 46391 46392 46393 46394 46395
Other Advisory URL: http://typo3.org/teams/security/security-bulletins/typo3-20080619-1/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/46389