PublicDate: 2007-12-15 02:46:00 UTC
Candidate: CVE-2007-6381
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6381
Description:
 SQL injection vulnerability in the indexed_search system extension in TYPO3
 3.x, 4.0 through 4.0.7, and 4.1 through 4.1.3 allows remote authenticated
 users to execute arbitrary SQL commands via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/typo3-src/+bug/180300
Priority: low
Discovered-by:
Assigned-to:
CVSS: 
Patches_typo3-src:
 vendor: http://www.debian.org/security/2007/dsa-1439
upstream_typo3-src: released (4.1.3)
dapper_typo3-src: ignored (reached end-of-life)
edgy_typo3-src: needed (reached end-of-life)
feisty_typo3-src: needed (reached end-of-life)
gutsy_typo3-src: needed (reached end-of-life)
hardy_typo3-src: released (4.1.2+debian-1ubuntu1)
intrepid_typo3-src: not-affected (4.1.6-1)
jaunty_typo3-src: not-affected (4.1.6-1)
karmic_typo3-src: not-affected (4.1.6-1)
devel_typo3-src: not-affected (4.1.6-1)