Description
Cross-site scripting (XSS) vulnerability in the t3lib_div::quoteJSvalue API function in TYPO3 4.0.13 and earlier, 4.1.x before 4.1.13, 4.2.x before 4.2.10, and 4.3.x before 4.3beta2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the sanitizing algorithm.
Remediation
References
Related Vulnerabilities
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1000410)
WordPress Plugin Database Backup for WordPress 'edit.php' Directory Traversal (1.7)
MySQL CVE-2019-2789 Vulnerability (CVE-2019-2789)
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5731)