exploitDog

GHSA-3284-g668-pg43

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in class.tx_indexedsearch.php in the Indexed Search 2.9.0 extension for Typo3 before 4.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Cross-site scripting (XSS) vulnerability in class.tx_indexedsearch.php in the Indexed Search 2.9.0 extension for Typo3 before 4.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Ссылки

EPSS

Процентиль: 66%

0.00558

Низкий

CVE ID

Связанные уязвимости

CVE-2006-5069

nvd

около 19 лет назад

Cross-site scripting (XSS) vulnerability in class.tx_indexedsearch.php in the Indexed Search 2.9.0 extension for Typo3 before 4.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.

CVE-2006-5069

debian

около 19 лет назад

Cross-site scripting (XSS) vulnerability in class.tx_indexedsearch.php ...

EPSS

Процентиль: 66%

0.00558

Низкий

CVE ID