High severityNVD Advisory· Published Oct 3, 2014· Updated Jun 17, 2026
CVE-2014-6295
CVE-2014-6295
Description
SQL injection vulnerability in the WEC Map (wec_map) extension before 3.0.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
web-tp3/wec_mapPackagist | < 3.0.3 | 3.0.3 |
jbartels/wec-mapPackagist | < 3.0.3 | 3.0.3 |
Affected products
5cpe:2.3:a:wec_map_project:wec_map:3.0.0:*:*:*:*:typo3:*:*+ 2 more
- cpe:2.3:a:wec_map_project:wec_map:3.0.0:*:*:*:*:typo3:*:*
- cpe:2.3:a:wec_map_project:wec_map:3.0.1:*:*:*:*:typo3:*:*
- cpe:2.3:a:wec_map_project:wec_map:*:*:*:*:*:typo3:*:*range: <=3.0.2
- ghsa-coords2 versions
< 3.0.3+ 1 more
- (no CPE)range: < 3.0.3
- (no CPE)range: < 3.0.3
Patches
Vulnerability mechanics
References
5- typo3.org/extensions/repository/view/wec_mapnvdPatchWEB
- typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-002/nvdPatchVendor Advisory
- github.com/advisories/GHSA-f3v6-g4mv-pjhqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2014-6295ghsaADVISORY
- typo3.org/security/advisory/typo3-ext-sa-2014-002ghsaWEB
News mentions
0No linked articles in our index yet.