Unrated severityNVD Advisory· Published Jul 22, 2010· Updated Jun 16, 2026
CVE-2009-4955
CVE-2009-4955
Description
SQL injection vulnerability in the ultraCards (th_ultracards) extension before 0.5.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:thomas_hempel:th_ultracards:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:thomas_hempel:th_ultracards:*:*:*:*:*:*:*:*range: <=0.5.0
- cpe:2.3:a:thomas_hempel:th_ultracards:0.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:thomas_hempel:th_ultracards:0.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:thomas_hempel:th_ultracards:0.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:thomas_hempel:th_ultracards:0.4.2:*:*:*:*:*:*:*
- Range: <0.5.1
Patches
Vulnerability mechanics
References
2- typo3.org/extensions/repository/view/th_ultracards/0.5.1/nvdPatch
- typo3.org/teams/security/security-bulletins/typo3-sa-2009-005/nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.