Количество 2
Количество 2
CVE-2020-11065
In TYPO3 CMS greater than or equal to 9.5.12 and less than 9.5.17, and greater than or equal to 10.2.0 and less than 10.4.2, it has been discovered that link tags generated by typolink functionality are vulnerable to cross-site scripting; properties being assigned as HTML attributes have not been parsed correctly. This has been fixed in 9.5.17 and 10.4.2.
GHSA-4j77-gg36-9864
Cross-Site Scripting in TYPO3 CMS Link Handling
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11065 In TYPO3 CMS greater than or equal to 9.5.12 and less than 9.5.17, and greater than or equal to 10.2.0 and less than 10.4.2, it has been discovered that link tags generated by typolink functionality are vulnerable to cross-site scripting; properties being assigned as HTML attributes have not been parsed correctly. This has been fixed in 9.5.17 and 10.4.2. | CVSS3: 5.4 | 0% Низкий | больше 5 лет назад |
| GHSA-4j77-gg36-9864 Cross-Site Scripting in TYPO3 CMS Link Handling | CVSS3: 5.4 | 0% Низкий | больше 5 лет назад |
Уязвимостей на страницу