Description
Cross-site Scripting (XSS) in TYPO3 before 4.3.12, 4.4.x before 4.4.9, and 4.5.x before 4.5.4 allows remote attackers to inject arbitrary web script or HTML via the system extension recycler.
Remediation
References
Related Vulnerabilities
WordPress Plugin CAPTCHA in Thai Multiple Cross-Site Scripting Vulnerabilities (1.1)
WordPress Plugin Frontend File Manager Cross-Site Request Forgery (21.3)
Roundcube Resource Management Errors Vulnerability (CVE-2008-5620)
WordPress Plugin FunCaptcha-Anti-Spam CAPTCHA Multiple Cross-Site Scripting Vulnerabilities (0.4.3)
WordPress Plugin Custom Login Redirect Cross-Site Request Forgery (1.0.0)