5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.2%
Cross-site scripting (XSS) vulnerability in the search result view in the Indexed Search (indexed_search) component in TYPO3 6.2.x before 6.2.16 allows remote authenticated editors to inject arbitrary web script or HTML via unspecified vectors.
typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-015/
www.securitytracker.com/id/1034486