Cross site scripting

2014-10-0314:55:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.0%

JSON

Cross-site scripting (XSS) vulnerability in the Alphabetic Sitemap (alpha_sitemap) extension 0.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CPENameOperatorVersion
alphabetic_sitemapeq0.0.2
alphabetic_sitemaple0.0.3
alphabetic_sitemapeq0.0.1

Name	Operator	Version
alphabetic_sitemap	eq	0.0.2
alphabetic_sitemap	le	0.0.3
alphabetic_sitemap	eq	0.0.1

References

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-002/

www.securityfocus.com/bid/69689

exchange.xforce.ibmcloud.com/vulnerabilities/95799