SQL injection vulnerability in the Flat Manager (flatmgr) extension before 1.9.16 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
2010-04-23T14:30:00.807
2025-04-11T00:51:21.963
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | joachim_ruhs | flat_manager | ≤ 1.9.15 | Yes |
| Application | joachim_ruhs | flat_manager | 1.4.0 | Yes |
| Application | joachim_ruhs | flat_manager | 1.5.0 | Yes |
| Application | joachim_ruhs | flat_manager | 1.6.0 | Yes |
| Application | joachim_ruhs | flat_manager | 1.6.2 | Yes |
| Application | joachim_ruhs | flat_manager | 1.7.0 | Yes |
| Application | joachim_ruhs | flat_manager | 1.7.1 | Yes |
| Application | joachim_ruhs | flat_manager | 1.7.2 | Yes |
| Application | joachim_ruhs | flat_manager | 1.8.0 | Yes |
| Application | joachim_ruhs | flat_manager | 1.8.6 | Yes |
| Application | joachim_ruhs | flat_manager | 1.8.8 | Yes |
| Application | joachim_ruhs | flat_manager | 1.8.9 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.0 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.1 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.2 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.3 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.4 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.7 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.8 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.9 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.10 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.12 | Yes |
| Application | joachim_ruhs | flat_manager | 1.9.14 | Yes |
| Application | typo3 | typo3 | * | No |