5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.4%
Multiple cross-site scripting (XSS) vulnerabilities in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allow remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors.
typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-004
www.debian.org/security/2012/dsa-2537
www.openwall.com/lists/oss-security/2012/08/22/8
exchange.xforce.ibmcloud.com/vulnerabilities/77792
nvd.nist.gov/vuln/detail/CVE-2012-3528