Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection.
Advisories for Composer/Ecodev/Newsletter package
2021
The Newsletter extension through 4.0.0 for TYPO3 allows SQL Injection.