VYPR
Unrated severityNVD Advisory· Published Jul 28, 2010· Updated Jun 16, 2026

CVE-2009-4971

CVE-2009-4971

Description

SQL injection vulnerability in the AJAX Chat (vjchat) extension before 0.3.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

6
  • cpe:2.3:a:vincent_tietz:vjchat:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:vincent_tietz:vjchat:*:*:*:*:*:*:*:*range: <=0.3.2
    • cpe:2.3:a:vincent_tietz:vjchat:0.2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:vincent_tietz:vjchat:0.2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:vincent_tietz:vjchat:0.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vincent_tietz:vjchat:0.3.1:*:*:*:*:*:*:*
  • TYPO3/AJAX Chatllm-create
    Range: <0.3.3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.