Vhs
1 CVEs
product
Monthly
The vhs (aka VHS: Fluid ViewHelpers) extension before 5.1.1 for TYPO3 allows SQL injection via isLanguageViewHelper. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SQLi
Vhs
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2021-28381
PHP
EPSS 1%
CVSS 9.8
CRITICAL
PATCH
Act Now
The vhs (aka VHS: Fluid ViewHelpers) extension before 5.1.1 for TYPO3 allows SQL injection via isLanguageViewHelper. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SQLi
Vhs
NVD