Lucene search
GitHub Advisory DatabaseGHSA-V4QR-8H2V-QPJXHistoryJun 05, 2024 - 5:07 p.m.
Cross-Site Scripting in TYPO3 CMS Backend
2024-06-0517:07:15
CWE-79
GitHub Advisory Database
github.com
2
cross-site scripting
typo3 cms
backend
user input
vulnerability
exploit
7 High
AI Score
Confidence
High
Failing to properly encode user input, backend forms are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability.
Affected configurations
Node
typo3cms_poll_system_extensionRange<8.7.5
7 High
AI Score
Confidence
High