Description
Cross-site scripting (XSS) vulnerability in the Frontend Login Box (aka felogin) subcomponent in TYPO3 4.2.0 through 4.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
Remediation
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4593)
Oracle Application Server Other Vulnerability (CVE-2000-0169)
Oracle Database Server CVE-2008-2604 Vulnerability (CVE-2008-2604)
WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.4)
WordPress Plugin 2Way VideoCalls and Random Chat-HTML5 Webcam Videochat Cross-Site Scripting (4.41)