Lucene search
OpenJS FoundationFRIENDSOFPHP:FRAPPANT:FRP-FORM-ANSWERS:CVE-2023-26091HistoryFeb 21, 2023 - 8:31 a.m.
TYPO3-EXT-SA-2023-002: Persisted Cross-Site Scripting in extension "Forms Export" (frp_form_answers)
2023-02-2108:31:00
OpenJS Foundation
github.com
6
typo3
extension
forms export
frp_form_answers
cross-site scripting
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
7.2 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
29.8%
Affected configurations
Node
frappantforms_exportRange<4.0.2typo3
| CPE | Name | Operator | Version |
|---|---|---|---|
| frappant/frp-form-answers | lt | 4.0.2 |
Related
cvelist
cvelist
CVE-2023-26091
2023-02-26 00:00:00
nvd
nvd
CVE-2023-26091
2023-02-26 05:15:10
friendsofphp
friendsofphp
osv
osv
frp_form_answers allows Cross-site Scripting
2023-02-26 06:30:15
cve
cve
CVE-2023-26091
2023-02-26 05:15:10
prion
prion
Design/Logic Flaw
2023-02-26 05:15:00
github
github
frp_form_answers allows Cross-site Scripting
2023-02-26 06:30:15
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
7.2 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
29.8%
Related for FRIENDSOFPHP:FRAPPANT:FRP-FORM-ANSWERS:CVE-2023-26091