Critical severity9.8NVD Advisory· Published Aug 13, 2021· Updated Jun 17, 2026
CVE-2021-38302
CVE-2021-38302
Description
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ecodev/newsletterPackagist | <= 4.0.0 | — |
Affected products
2- TYPO3/Newsletter extensiondescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-hqm2-gwqf-r5g5ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-38302ghsaADVISORY
- typo3.org/help/security-advisoriesnvdVendor Advisory
- typo3.org/security/advisory/typo3-ext-sa-2021-014nvdVendor AdvisoryWEB
News mentions
0No linked articles in our index yet.