Description
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS on the Extension Manager.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.5.8)
WordPress Plugin Broken Link Checker Cross-Site Scripting (1.11.19)
WordPress Plugin Software License Manager Cross-Site Request Forgery (4.5.0)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-1000658)