VYPR
Moderate severityNVD Advisory· Published May 21, 2012· Updated Jun 16, 2026

CVE-2010-5104

CVE-2010-5104

Description

The escapeStrForLike method in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 does not properly escape input when the MySQL database is set to sql_mode NO_BACKSLASH_ESCAPES, which allows remote attackers to obtain sensitive information via wildcard characters in a LIKE query.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
typo3/cms-corePackagist
>= 4.2.0, < 4.2.164.2.16
typo3/cms-corePackagist
>= 4.3.0, < 4.3.94.3.9
typo3/cms-corePackagist
>= 4.4.0, < 4.4.54.4.5

Affected products

30
  • TYPO3/Typo329 versions
    cpe:2.3:a:typo3:typo3:4.2.0:*:*:*:*:*:*:*+ 28 more
    • cpe:2.3:a:typo3:typo3:4.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.10:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.11:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.12:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.13:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.14:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.15:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.8:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.2.9:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.6:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.7:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.3.8:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:typo3:typo3:4.4.4:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 4.2.0, < 4.2.16

Patches

Vulnerability mechanics

References

18

News mentions

0

No linked articles in our index yet.