What is the severity of CVE-2010-2131?

CVE-2010-2131 is considered a critical vulnerability due to its ability to allow remote attackers to execute arbitrary SQL commands.

How do I fix CVE-2010-2131?

To fix CVE-2010-2131, upgrade the Calendar Base extension to version 1.3.2 or higher.

Which versions are affected by CVE-2010-2131?

CVE-2010-2131 affects all versions of the Calendar Base extension prior to 1.3.2.

What type of vulnerability is represented by CVE-2010-2131?

CVE-2010-2131 is classified as an SQL injection vulnerability.

Who is the vendor associated with CVE-2010-2131?

The vendor associated with CVE-2010-2131 is Mario Matzulla, the developer of the Calendar Base extension.

Vulnerability/
CVE-2010-2131

high

7.5

CWE

2/6/2010

16/9/2024

CVE-2010-2131: SQL Injection

First published: Wed Jun 02 2010(Updated: )

SQL injection vulnerability in the Calendar Base (cal) extension before 1.3.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via iCalendar data.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
mario matzulla Calendar Base	<=1.3.1
mario matzulla Calendar Base	=0.9.0
mario matzulla Calendar Base	=0.10.0
mario matzulla Calendar Base	=0.11.0
mario matzulla Calendar Base	=0.12.0
mario matzulla Calendar Base	=0.12.1
mario matzulla Calendar Base	=0.13.0
mario matzulla Calendar Base	=0.13.1
mario matzulla Calendar Base	=0.14.0
mario matzulla Calendar Base	=0.14.1
mario matzulla Calendar Base	=0.15.0
mario matzulla Calendar Base	=0.15.1
mario matzulla Calendar Base	=0.15.2
mario matzulla Calendar Base	=0.15.3
mario matzulla Calendar Base	=0.15.4
mario matzulla Calendar Base	=0.15.5
mario matzulla Calendar Base	=0.16.0
mario matzulla Calendar Base	=0.16.1
mario matzulla Calendar Base	=0.16.2
mario matzulla Calendar Base	=0.16.3
mario matzulla Calendar Base	=0.16.4
mario matzulla Calendar Base	=0.16.5
mario matzulla Calendar Base	=0.16.6
mario matzulla Calendar Base	=0.17.0
mario matzulla Calendar Base	=0.17.1
mario matzulla Calendar Base	=0.17.2
mario matzulla Calendar Base	=0.17.3
mario matzulla Calendar Base	=1.0.0
mario matzulla Calendar Base	=1.1.0
mario matzulla Calendar Base	=1.2.0
mario matzulla Calendar Base	=1.2.1
mario matzulla Calendar Base	=1.3.0
TYPO3

Remedy

http://typo3.org/extensions/repository/view/cal/1.3.2/

Remedy

http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-005/

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-2131?
CVE-2010-2131 is considered a critical vulnerability due to its ability to allow remote attackers to execute arbitrary SQL commands.
How do I fix CVE-2010-2131?
To fix CVE-2010-2131, upgrade the Calendar Base extension to version 1.3.2 or higher.
Which versions are affected by CVE-2010-2131?
CVE-2010-2131 affects all versions of the Calendar Base extension prior to 1.3.2.
What type of vulnerability is represented by CVE-2010-2131?
CVE-2010-2131 is classified as an SQL injection vulnerability.
Who is the vendor associated with CVE-2010-2131?
The vendor associated with CVE-2010-2131 is Mario Matzulla, the developer of the Calendar Base extension.

collector/nvd-historical
agent/type
agent/remedy
agent/weakness
agent/references
agent/author
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/mario matzulla
canonical/mario matzulla calendar base
version/mario matzulla calendar base/1.3.1
version/mario matzulla calendar base/0.9.0
version/mario matzulla calendar base/0.10.0
version/mario matzulla calendar base/0.11.0
version/mario matzulla calendar base/0.12.0
version/mario matzulla calendar base/0.12.1
version/mario matzulla calendar base/0.13.0
version/mario matzulla calendar base/0.13.1
version/mario matzulla calendar base/0.14.0
version/mario matzulla calendar base/0.14.1
version/mario matzulla calendar base/0.15.0
version/mario matzulla calendar base/0.15.1
version/mario matzulla calendar base/0.15.2
version/mario matzulla calendar base/0.15.3
version/mario matzulla calendar base/0.15.4
version/mario matzulla calendar base/0.15.5
version/mario matzulla calendar base/0.16.0
version/mario matzulla calendar base/0.16.1
version/mario matzulla calendar base/0.16.2
version/mario matzulla calendar base/0.16.3
version/mario matzulla calendar base/0.16.4
version/mario matzulla calendar base/0.16.5
version/mario matzulla calendar base/0.16.6
version/mario matzulla calendar base/0.17.0
version/mario matzulla calendar base/0.17.1
version/mario matzulla calendar base/0.17.2
version/mario matzulla calendar base/0.17.3
version/mario matzulla calendar base/1.0.0
version/mario matzulla calendar base/1.1.0
version/mario matzulla calendar base/1.2.0
version/mario matzulla calendar base/1.2.1
version/mario matzulla calendar base/1.3.0
vendor/typo3
canonical/typo3

CVE-2010-2131: SQL Injection

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-2131?

How do I fix CVE-2010-2131?

Which versions are affected by CVE-2010-2131?

What type of vulnerability is represented by CVE-2010-2131?

Who is the vendor associated with CVE-2010-2131?

Company

Resources

Contact