Cross site scripting

2012-02-1417:55:00

PRIOn knowledge base

www.prio-n.com

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.9%

JSON

Cross-site scripting (XSS) vulnerability in the Terminal PHP Shell (terminal) extension 0.3.2 and earlier for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CPENameOperatorVersion
terminalle0.3.2

CPE	Name	Operator	Version
	terminal	le	0.3.2

References

osvdb.org/78796

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/

www.securityfocus.com/bid/51849