Lucene search
GoogleOSV:CVE-2022-31049HistoryJun 14, 2022 - 9:15 p.m.
CVE-2022-31049
2022-06-1421:15:16
Google
osv.dev
6
TYPO3 is an open source web content management system. Prior to versions 9.5.34 ELTS, 10.4.29, and 11.5.11, user submitted content was used without being properly encoded in HTML emails sent to users. The actually affected components were mail clients used to view those messages. TYPO3 versions 9.5.34 ELTS, 10.4.29, and 11.5.11 contain a fix for the problem.
| CPE | Name | Operator | Version |
|---|---|---|---|
| typo3 | eq | 8.6.0 | |
| typo3 | eq | 9.1.3 | |
| typo3 | eq | TYPO3_6-2-0 | |
| typo3 | eq | 12.0.10 | |
| typo3 | eq | 11.0.2 | |
| typo3 | eq | 11.0.0 | |
| typo3 | eq | TYPO3_6-2-0beta7 | |
| typo3 | eq | TYPO3_6-2-0beta6 | |
| typo3 | eq | TYPO3_6-2-0alpha3 | |
| typo3 | eq | TYPO3_6-2-3 |
Related
osv
osv
BIT-typo3-2022-31049
2024-03-06 11:09:21
Cross-Site Scripting in TYPO3's Frontend Login Mailer
2022-06-17 20:56:24
friendsofphp
friendsofphp
TYPO3-CORE-SA-2022-004: Cross-Site Scripting in Frontend Login Mailer
2022-06-14 07:11:45
TYPO3-CORE-SA-2022-004: Cross-Site Scripting in Frontend Login Mailer
2022-06-14 07:11:45
github
github
Cross-Site Scripting in TYPO3's Frontend Login Mailer
2022-06-17 20:56:24
cvelist
cvelist
CVE-2022-31049 Cross-Site Scripting in Frontend Login Mailer
2022-06-14 20:50:12
nvd
nvd
CVE-2022-31049
2022-06-14 21:15:16
veracode
veracode
HTML Injection
2022-06-15 04:51:19
prion
prion
Code injection
2022-06-14 21:15:00
openvas
openvas
TYPO3 XSS Vulnerability (TYPO3-CORE-SA-2022-004)
2022-06-15 00:00:00
cve
cve
CVE-2022-31049
2022-06-14 21:15:16