Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-3674)

Description

TYPO3 before 4.4.1 allows XSS in the frontend search box.

Remediation

References

Related Vulnerabilities

WordPress Plugin Maintenance Mode Under Construction Page Landing Page Possible Remote Code Execution (1.0.9)

WordPress Plugin Edit Comments XT Cross-Site Scripting (1.0)

MySQL CVE-2017-3458 Vulnerability (CVE-2017-3458)

Oracle JRE CVE-2013-2416 Vulnerability (CVE-2013-2416)

WordPress Plugin Import Export WordPress Users Security Bypass (1.3.8)

Severity

Medium

Classification

CVE-2010-3674 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities