Description
Cross-site scripting (XSS) vulnerability in the Exception Handler in TYPO3 4.4.x before 4.4.15, 4.5.x before 4.5.15, 4.6.x before 4.6.8, and 4.7 allows remote attackers to inject arbitrary web script or HTML via exception messages.
Remediation
References
Related Vulnerabilities
WordPress Plugin Share Buttons by AddThis Cross-Site Scripting (5.0.12)
WordPress Plugin MSMC-Redirect After Comment Multiple Vulnerabilities (2.1.2)
WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.5.4)
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.18)
MyBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-4624)