ID
VAR-201001-0216
CVE
CVE-2010-0334
TITLE
TYPO3 of vote_for_tt_news Extended Vote rank In SQL Injection vulnerability
Trust: 0.8
sources:
JVNDB: JVNDB-2009-004018
DESCRIPTION
SQL injection vulnerability in the Vote rank for news (vote_for_tt_news) extension 1.0.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Vote For Tt News is prone to a sql-injection vulnerability
Trust: 1.98
sources:
NVD: CVE-2010-0334 //
JVNDB: JVNDB-2009-004018 //
BID: 73716 //
VULHUB: VHN-42939
AFFECTED PRODUCTS
| vendor: | francisco cifuentes | model: | vote for tt news | scope: | eq | version: | 1.0.1 | Trust: 1.6 |
| vendor: | francisco cifuentes | model: | vote for tt news | scope: | lte | version: | 1.0.1 | Trust: 0.8 |
| vendor: | typo3 association | model: | typo3 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | francisco | model: | cifuentes vote for tt news | scope: | eq | version: | 1.0.1 | Trust: 0.3 |
sources:
BID: 73716 //
JVNDB: JVNDB-2009-004018 //
CNNVD: CNNVD-201001-163 //
NVD: CVE-2010-0334
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
VULHUB: VHN-42939 //
JVNDB: JVNDB-2009-004018 //
CNNVD: CNNVD-201001-163 //
NVD: CVE-2010-0334
PROBLEMTYPE DATA
| problemtype: | CWE-89 | Trust: 1.9 |
sources:
VULHUB: VHN-42939 //
JVNDB: JVNDB-2009-004018 //
NVD: CVE-2010-0334
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201001-163
TYPE
SQL injection
Trust: 0.6
sources:
CNNVD: CNNVD-201001-163
CONFIGURATIONS
sources:
JVNDB: JVNDB-2009-004018
PATCH
| title: | alpha background GIFBUILDER TYPO3 problem: Resolved! | url: | http://lists.typo3.org/pipermail/typo3-english/2009-August/063035.html | Trust: 0.8 |
| title: | typo3-sa-2009-021 | url: | http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-021/ | Trust: 0.8 |
sources:
JVNDB: JVNDB-2009-004018
EXTERNAL IDS
| db: | NVD | id: | CVE-2010-0334 | Trust: 2.8 |
| db: | JVNDB | id: | JVNDB-2009-004018 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201001-163 | Trust: 0.7 |
| db: | BID | id: | 73716 | Trust: 0.4 |
| db: | VULHUB | id: | VHN-42939 | Trust: 0.1 |
sources:
VULHUB: VHN-42939 //
BID: 73716 //
JVNDB: JVNDB-2009-004018 //
CNNVD: CNNVD-201001-163 //
NVD: CVE-2010-0334
REFERENCES
| url: | http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-021/ | Trust: 2.0 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0334 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0334 | Trust: 0.8 |
sources:
VULHUB: VHN-42939 //
BID: 73716 //
JVNDB: JVNDB-2009-004018 //
CNNVD: CNNVD-201001-163 //
NVD: CVE-2010-0334
CREDITS
Unknown
Trust: 0.3
sources:
BID: 73716
SOURCES
| db: | VULHUB | id: | VHN-42939 |
| db: | BID | id: | 73716 |
| db: | JVNDB | id: | JVNDB-2009-004018 |
| db: | CNNVD | id: | CNNVD-201001-163 |
| db: | NVD | id: | CVE-2010-0334 |
LAST UPDATE DATE
2025-04-11T22:50:41.382000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-42939 | date: | 2011-07-25T00:00:00 |
| db: | BID | id: | 73716 | date: | 2010-01-15T00:00:00 |
| db: | JVNDB | id: | JVNDB-2009-004018 | date: | 2012-06-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201001-163 | date: | 2010-01-18T00:00:00 |
| db: | NVD | id: | CVE-2010-0334 | date: | 2025-04-11T00:51:21.963 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-42939 | date: | 2010-01-15T00:00:00 |
| db: | BID | id: | 73716 | date: | 2010-01-15T00:00:00 |
| db: | JVNDB | id: | JVNDB-2009-004018 | date: | 2012-06-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201001-163 | date: | 2010-01-15T00:00:00 |
| db: | NVD | id: | CVE-2010-0334 | date: | 2010-01-15T19:30:00.847 |