Описание
Commerce extension for TYPO3 vulnerable to Cross-site Scripting
Cross-site scripting (XSS) vulnerability in the Commerce extension before 0.9.9 for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Пакеты
Наименование
commerceteam/commerce
composer
Затронутые версииВерсия исправления
>= 0.9.6, < 0.9.9
0.9.9
Связанные уязвимости
nvd
больше 15 лет назад
Cross-site scripting (XSS) vulnerability in the Commerce extension before 0.9.9 for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.