fkie_cve-2010-3604
Vulnerability from fkie_nvd
Published
2010-09-24 21:00
Modified
2025-04-11 00:51
Severity ?
Summary
SQL injection vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
References
cve@mitre.orghttp://secunia.com/advisories/41530Vendor Advisory
cve@mitre.orghttp://typo3.org/extensions/repository/view/powermail/1.5.4/Patch
cve@mitre.orghttp://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/41530Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://typo3.org/extensions/repository/view/powermail/1.5.4/Patch
af854a3a-2127-422b-91ae-364da2661108http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019Patch, Vendor Advisory
Impacted products
Vendor Product Version
alex_kellner powermail *
alex_kellner powermail 1.0.1
alex_kellner powermail 1.0.2
alex_kellner powermail 1.0.3
alex_kellner powermail 1.0.4
alex_kellner powermail 1.0.5
alex_kellner powermail 1.0.6
alex_kellner powermail 1.0.7
alex_kellner powermail 1.0.8
alex_kellner powermail 1.0.9
alex_kellner powermail 1.0.10
alex_kellner powermail 1.0.11
alex_kellner powermail 1.0.12
alex_kellner powermail 1.1.0
alex_kellner powermail 1.1.1
alex_kellner powermail 1.1.2
alex_kellner powermail 1.1.3
alex_kellner powermail 1.1.4
alex_kellner powermail 1.1.5
alex_kellner powermail 1.1.6
alex_kellner powermail 1.1.7
alex_kellner powermail 1.1.8
alex_kellner powermail 1.1.9
alex_kellner powermail 1.1.10
alex_kellner powermail 1.2.0
alex_kellner powermail 1.2.1
alex_kellner powermail 1.2.2
alex_kellner powermail 1.2.3
alex_kellner powermail 1.2.4
alex_kellner powermail 1.3.1
alex_kellner powermail 1.3.2
alex_kellner powermail 1.3.3
alex_kellner powermail 1.3.4
alex_kellner powermail 1.3.5
alex_kellner powermail 1.3.6
alex_kellner powermail 1.3.7
alex_kellner powermail 1.3.8
alex_kellner powermail 1.3.9
alex_kellner powermail 1.3.10
alex_kellner powermail 1.3.11
alex_kellner powermail 1.3.12
alex_kellner powermail 1.3.13
alex_kellner powermail 1.3.14
alex_kellner powermail 1.3.15
alex_kellner powermail 1.3.16
alex_kellner powermail 1.4.1
alex_kellner powermail 1.4.2
alex_kellner powermail 1.4.3
alex_kellner powermail 1.4.4
alex_kellner powermail 1.4.5
alex_kellner powermail 1.4.6
alex_kellner powermail 1.4.7
alex_kellner powermail 1.4.8
alex_kellner powermail 1.4.9
alex_kellner powermail 1.4.10
alex_kellner powermail 1.4.11
alex_kellner powermail 1.4.12
alex_kellner powermail 1.4.13
alex_kellner powermail 1.4.14
alex_kellner powermail 1.4.15
alex_kellner powermail 1.4.16
alex_kellner powermail 1.4.17
alex_kellner powermail 1.4.18
alex_kellner powermail 1.5.0
alex_kellner powermail 1.5.1
typo3 typo3 *


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6EC67D0-8B43-4664-88F6-DD4309560D61",
              "versionEndIncluding": "1.5.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F114F8E-08DE-4C8A-A0F7-567A7A822E0D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB9677B8-7E32-4020-845B-FD31B327491D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "1FC6F692-1F1E-4FB4-9EFA-57F0D0938256",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B9820C6-B4E6-4632-A6D4-D7EA093B1800",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7AEDCA4-5AC0-4970-99B4-9BE02C880AE6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "303CC902-BBDA-417C-90C5-6CC316ED2E90",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A9CDAD5-EE32-47C9-9A94-5FDA002C58BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "2065E944-5F55-4ABF-A20E-F5D4CEED0F7F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C13C053-62AD-4866-AA6E-B6E3862734FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "F84BCD42-ACAC-47B7-BC11-162BDF37E5D6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DAB0DA1-D646-41F9-9E49-EFB3E3D6753A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.0.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A32130E-4799-41D3-8323-8B3B4B8B5453",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CC13061-9822-4399-A4A1-EBEED9742EAA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "96CEE2A8-AC38-4581-B56C-399781D73A5D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C0415B2-89B6-4D75-AD24-DD6152110D8E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C905E945-4195-448E-B2B6-8C7F9C3FABCE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D5897048-EE9A-4DB1-9802-27018E665A26",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "4EFC2BB8-B4ED-4DC0-A391-7ACB2DD94E1B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "56CF73D1-AA5E-4A6C-95B8-3AD4FD7EC7D3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5D7FEED-4451-43DA-9811-E7F6AA589F89",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "A4670C29-5B52-4172-8AED-0AD01229778A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "384FD986-C33D-4A87-A0ED-8EE51AD5BEA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A6CF5F4-67D7-4495-B610-13959A10B97D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5D7E4A4-5887-40B8-860E-91F102A24D89",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7055F350-0EE7-4DE7-8FB6-26A0F2D80224",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C414A1EC-ED36-4113-87EE-496D0CE6C296",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1CC9389-53A8-43D8-9D03-9DBBEA26065C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "2597C92A-BE72-4246-B2E7-F7B316E6BECB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF0D0154-08BF-42AB-B97C-C0485BD34E0F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "9AFE66F2-621A-4F9A-8D99-C5F96D2BC528",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F32EE91-CF3B-495C-9AEB-CF5F7A49E55C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D79D18B0-E52B-4A80-BA0D-664BE32A667B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "83192D4F-A044-456E-968C-78FD3F8782B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "027479DC-5EA0-4BAE-8F45-DB8CD2E7DBD7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "29168B6A-3D80-4DC7-A69E-E069B1627A18",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "490C3558-53F7-401D-94D4-ABC5A2DCB18A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "6783329E-53C6-4FAC-A76A-CDB15C30EE65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "3D85EF2D-D597-4BF8-8D42-65DF495F5B16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "ED148E81-A7BF-4E80-9BA7-1A95D4192521",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBCFF6F8-1913-4095-BB33-F371EA162CB3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "6E5C372F-D442-44EA-9B74-A724261F7347",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D8B22DF-AC72-4A1D-BAC8-41AA612EEEEF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "6293BE50-CEC2-4564-B323-5518CB5F26A1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.3.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "46449EDA-9CD5-4FFC-ACC3-AE23D4CC3758",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C94B49F-3249-4FF7-8D71-EFB59EB0B69E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E2CE2E63-4B3B-4F37-983E-084058BB012D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDA972B4-3307-4A9C-9E9A-F4DCA04B3320",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "CAE015AC-7FF4-445A-9112-576ECA6131A1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CA35D7C-6EAA-4E57-B229-771FBAE2616C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BBAD78D-2EEA-4E84-A31D-A8DB9A4ED6A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "129FBFD3-5DF3-4C03-8416-89C9295F7245",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "5696F1A2-1A78-43F0-B52A-13C4B1A9989F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D6F4864-877C-4FBA-99F8-CA138E089B70",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "7BFE7AC9-06A3-4BCC-96F4-F978DE2A12AB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE95ADBE-FB92-427A-9C12-6F4DB32AB7C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "0661B887-07D1-4C97-A810-747D34F1854E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "FA8D2162-DEBA-400A-9BF4-CE2D5C8E59AE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "BD48C215-3464-49B3-AB9B-FAC18A0D6420",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "90DAF9E4-959D-44C6-85A4-0F9124FDEC96",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "A773CA49-4B9D-44AC-92A6-107514320987",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "4A774AE5-7A2E-460A-A8E4-FC3AEEFD1F5E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.4.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B7D81F3-C67F-4326-BB7F-414D6ADDAFFF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D29C87E0-772E-4840-BC53-C7AF9D7B8DC1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:alex_kellner:powermail:1.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7ECCDE1E-F3B4-4CD5-8C47-C29BC6C19686",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F1C59B0-CDF2-4F9A-88C7-61E8F18590DB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "SQL injection vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de inyecci\u00f3n SQL en la extensi\u00f3n powermail v1.5.3 y versiones anteriores para TYPO3 permite a atacantes remotos ejecutar comandos SQL de su elecci\u00f3n a trav\u00e9s de vectores de ataque sin especificar."
    }
  ],
  "id": "CVE-2010-3604",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2010-09-24T21:00:33.230",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/41530"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://typo3.org/extensions/repository/view/powermail/1.5.4/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/41530"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://typo3.org/extensions/repository/view/powermail/1.5.4/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-019"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-89"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.