Description
Cross-site scripting (XSS) vulnerability in the Frontend Login Box (aka felogin) subcomponent in TYPO3 4.2.0 through 4.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Testimonial Manager SQL Injection (1.2.0)
WordPress Plugin Brizy-Page Builder Security Bypass (1.0.125)
PHP Other Vulnerability (CVE-2007-1453)
Grafana Authentication Bypass by Spoofing Vulnerability (CVE-2023-3128)
Oracle Application Server CVE-2006-5364 Vulnerability (CVE-2006-5364)