Security
Headlines

Headlines Latest CVEs

Headline

GHSA-vw6x-c5rg-jmjp: SQL injection in funadmin

Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile.

6 months ago

#sql #vulnerability #git

SQL injection in funadmin

High severity GitHub Reviewed Published Oct 25, 2024 to the GitHub Advisory Database • Updated Oct 25, 2024

ghsa: Latest News

GHSA-744g-7qm9-hjh9: The TYPO3 CMS Backend has Broken Authentication in Backend MFA

15 hours ago

GHSA-6frx-j292-c844: TYPO3 Allows Privilege Escalation to System Maintainer

15 hours ago

GHSA-9hq9-cr36-4wpj: TYPO3 Allows Unrestricted File Upload in File Abstraction Layer

15 hours ago

GHSA-3jrg-97f3-rqh9: TYPO3 Unverified Password Change for Backend Users

15 hours ago

GHSA-x8pv-fgxp-8v3x: TYPO3 Allows Information Disclosure via DBAL Restriction Handling

15 hours ago