Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-HQ37-RFJC-MR8H
HistoryJun 05, 2024 - 3:03 p.m.

Cross-Site Scripting (XSS) in TYPO3 Backend

2024-06-0515:03:28
Google
osv.dev
1
cross-site scripting
typo3
backend
input encoding
vulnerability
user account
plugins

AI Score

7

Confidence

High

JSON

Failing to properly encode user input, the page module is vulnerable to Cross-Site Scripting. A valid backend user account with permissions to edit plugins is needed to exploit this vulnerability.

AI Score

7

Confidence

High

JSON