[Typo3-dev] sql injection problem?
Dmitry Dulepov
typo3 at fm-world.ru
Fri Mar 4 10:39:08 CET 2005
Hi!
He posted a message to this list and Kasper replied very quickly asking for
details. That was all about this problem. Do not know what happened then...
I search security archives regulary (and subscribed to many of them), Typo3
so far looks like the most secured application with the least number of
vulnerabilities found. Despite feature list this was one of the reasons I
have choosen Typo3 as CMS for my projects.
Dmitry.
----- Original Message -----
From: "Michael Scharkow" <mscharkow at gmx.net>
Newsgroups: typo3.dev
To: <typo3-dev at lists.netfielders.de>
Sent: Friday, March 04, 2005 11:28 AM
Subject: Re: [Typo3-dev] sql injection problem?
> Axel Burkhardt wrote:
> > This morning a guy called "Fabian Becker" (neonomicus at gmx.de) posted the
> > following mail in the bugtraq mailinglist. He claimes, that he found a
> > SQL injection problem in typo3. His "example" is absolutly insignificant
> > and I can't reproduce the problem (at least I don't even get the point).
>
> This is already discussed in -english, and it seems reproducable but not
> -core related, since it exploits an extension.
>
> Did anyone receive that mail from Fabian some weeks ago?
>
> Greetings,
> Michael
>
> _______________________________________________
> Typo3-dev mailing list
> Typo3-dev at lists.netfielders.de
> http://lists.netfielders.de/cgi-bin/mailman/listinfo/typo3-dev
>
More information about the TYPO3-dev
mailing list