Markus Kleinhenz

**Name of the Vulnerable Software and Affected Versions** TYPO3 extension fe mp3player versions 0.2.3 and earlier **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. **Recommendations** For versions 0.2.3 and earlier, update to a version later than 0.2.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** TYPO3 References database (t3references) extension versions 0.1.1 and earlier **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. **Recommendations** For versions 0.1.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.