Living User Experience
1 CVEs
product
Monthly
A SQL injection issue was discovered in the lux extension before 17.6.1, and 18.x through 24.x before 24.0.2, for TYPO3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
Living User Experience
NVD
CVSS 3.1
9.8
EPSS
26.3%
CVE-2022-35628
PHP
EPSS 26%
CVSS 9.8
CRITICAL
PATCH
Act Now
A SQL injection issue was discovered in the lux extension before 17.6.1, and 18.x through 24.x before 24.0.2, for TYPO3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
Living User Experience
NVD