Andreas KieferCVEs & Vulnerabilities
2 CVEs affecting Andreas Kiefer products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
ke yac 10
CVE-2010-4891HIGH
SQL injection vulnerability in the Yet Another Calendar (ke_yac) extension before 1.1.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
7 Oct 2011
7.5
CVSS
CVE-2010-4890MEDIUM
Cross-site scripting (XSS) vulnerability in the Yet Another Calendar (ke_yac) extension before 1.1.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
7 Oct 2011
4.3
CVSS
← PrevPage 1 / 1Next →