Unrated severityNVD Advisory· Published Aug 16, 2013· Updated Apr 29, 2026

CVE-2013-5304

Description

SQL injection vulnerability in the Store Locator (locator) extension before 3.1.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

Joachim Ruhs/Locator8 versions
cpe:2.3:a:joachim_ruhs:locator:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:joachim_ruhs:locator:*:*:*:*:*:*:*:*range: <=2.9.1
- cpe:2.3:a:joachim_ruhs:locator:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:joachim_ruhs:locator:2.9.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

typo3.org/extensions/repository/view/locatornvdPatch
typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-013nvdPatchVendor Advisory
secunia.com/advisories/54350nvdVendor Advisory
osvdb.org/95962nvd
www.securityfocus.com/bid/61606nvd
exchange.xforce.ibmcloud.com/vulnerabilities/86230nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000