Lucene search
GoogleOSV:GHSA-WH8Q-72CP-P5WFHistoryJun 03, 2024 - 2:41 p.m.
Cross-Site Scripting in TYPO3 component Indexed Search
2024-06-0314:41:04
Google
osv.dev
2
cross-site scripting
typo3
indexed search
vulnerability
html injection
security
6.9 Medium
AI Score
Confidence
High
Failing to properly encode editor input, the search result view of indexed_search is susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML.
6.9 Medium
AI Score
Confidence
High