Описание
TYPO3 Multiple Cross-Site Scripting vulnerabilities in frontend
Failing to properly encode editor input, several frontend components are susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML.
Пакеты
Наименование
typo3/cms
composer
Затронутые версииВерсия исправления
>= 6.2.0, < 6.2.16
6.2.16
Наименование
typo3/cms
composer
Затронутые версииВерсия исправления
>= 7.0.0, < 7.6.1
7.6.1