exploitDog

GHSA-58vj-r9cf-29fq

Опубликовано: 22 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary web script or HTML via the "JSwindow" property of the typolink function.

Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary web script or HTML via the "JSwindow" property of the typolink function.

Ссылки

EPSS

Процентиль: 55%

0.00332

Низкий

CVE ID

Связанные уязвимости

CVE-2011-4626

CVSS3: 6.1

ubuntu

больше 6 лет назад

Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary web script or HTML via the "JSwindow" property of the typolink function.

CVE-2011-4626

CVSS3: 6.1

nvd

больше 6 лет назад

Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary web script or HTML via the "JSwindow" property of the typolink function.

CVE-2011-4626

CVSS3: 6.1

debian

больше 6 лет назад

Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, ...

EPSS

Процентиль: 55%

0.00332

Низкий

CVE ID