Description
Cross-site scripting (XSS) vulnerability in Extension Manager in TYPO3 4.5.x before 4.5.32 and 4.7.x before 4.7.17 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
MongoDb Reachable Assertion Vulnerability (CVE-2024-3374)
Apache Traffic Server Memory Disclosure Vulnerability (CVE-2020-17508)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8656)
Piwigo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-10679)
WordPress Plugin Newsletter Subscription Form Possible Remote Code Execution (1.1.2)