Description

Cross-site scripting (XSS) vulnerability in the Backend User Administration Module in TYPO3 6.0.x before 6.0.12 and 6.1.x before 6.1.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2013-7077

Related Vulnerabilities

OpenSSL Other Vulnerability (CVE-2014-3569)

WordPress Plugin Calculated Fields Form Cross-Site Scripting (1.0.81)

WordPress Plugin BP Profile Search PHP Object Injection (4.5.3)

WordPress Plugin AccessAlly PHP Code Execution (3.3.1)

MySQL CVE-2019-2920 Vulnerability (CVE-2019-2920)

Severity

Medium

Classification

CVE-2013-7077 CWE-707

Tags

Missing Update Known Vulnerabilities