Skip to main content

Dynamic Content Elements

1 CVEs product

Monthly

CVE-2021-31777 PHP MEDIUM POC PATCH This Month

The dce (aka Dynamic Content Element) extension 2.2.0 through 2.6.x before 2.6.2, and 2.7.x before 2.7.1, for TYPO3 allows SQL Injection via a backend user account. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SQLi Dynamic Content Elements
NVD
CVSS 3.1
4.9
EPSS
1.4%
EPSS 1% CVSS 4.9
MEDIUM POC PATCH This Month

The dce (aka Dynamic Content Element) extension 2.2.0 through 2.6.x before 2.6.2, and 2.7.x before 2.7.1, for TYPO3 allows SQL Injection via a backend user account. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SQLi Dynamic Content Elements
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy