3 matches found
GHSA-7X6F-JVMG-6FGP TYPO3 Direct Mail Extension Vulnerable to Cross-Site Scripting (XSS)
Cross-site scripting XSS vulnerability in the newsletter configuration feature in the backend module in the Direct Mail directmail extension 2.6.4 and earlier for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
TYPO3 Direct Mail Component Input Validation Error Vulnerability
TYPO3 is a free and open source content management system framework CMS/CMF from the TYPO3 Association in Switzerland. direct Mail is an email marketing extension plugin used in it. A security vulnerability exists in the Direct Mail component of TYPO3 5.2.3 and earlier versions, which stems from...
TYPO3 Direct Mail Information Disclosure Vulnerability
TYPO3 is a free and open source content management system framework CMS/CMF from the TYPO3 Association in Switzerland. direct Mail is an email marketing extension plugin used in it. An information disclosure vulnerability exists in TYPO3 Direct Mail 5.2.2 and prior versions. The vulnerability ste...