Lucene search
+L

7 matches found

Veracode
Veracode
added 2022/07/14 11:38 a.m.27 views

Cross-site Scripting (XSS)

ameos/ameostarteaucitron is vulnerable to cross-site scriptingXSS attacks. The library does not properly encode the user input in displayParticipantsFormAction function, allowing an attacker to inject and execute malicious javascript on the target system...

5.4CVSS5.7AI score0.00467EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2022/07/13 12:0 a.m.12 views

Cross site scripting in ameos_tarteaucitron

The ameostarteaucitron aka AMEOS - TarteAuCitron GDPR cookie banner and tracking management / French RGPD compatible extension before 1.2.23 for TYPO3 allows XSS...

5.4CVSS7.2AI score0.00467EPSS
Exploits0References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2022/07/13 12:0 a.m.15 views

Cross site scripting in ameos_tarteaucitron

The ameostarteaucitron aka AMEOS - TarteAuCitron GDPR cookie banner and tracking management / French RGPD compatible extension before 1.2.23 for TYPO3 allows XSS...

5.4CVSS6.8AI score0.00467EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/07/12 10:15 p.m.23 views

CVE-2022-33155

The ameostarteaucitron aka AMEOS - TarteAuCitron GDPR cookie banner and tracking management / French RGPD compatible extension before 1.2.23 for TYPO3 allows XSS...

5.4CVSS0.00467EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/07/12 9:59 p.m.23 views

CVE-2022-33155

The ameostarteaucitron aka AMEOS - TarteAuCitron GDPR cookie banner and tracking management / French RGPD compatible extension before 1.2.23 for TYPO3 allows XSS...

5.8AI score0.00467EPSS
Exploits0References1
OSV
OSV
added 2022/07/12 9:59 p.m.9 views

CVE-2022-33155

The ameostarteaucitron aka AMEOS - TarteAuCitron GDPR cookie banner and tracking management / French RGPD compatible extension before 1.2.23 for TYPO3 allows XSS...

5.4CVSS6.9AI score0.00467EPSS
Exploits0References3
CVE
CVE
added 2022/07/12 9:59 p.m.54 views

CVE-2022-33155

Affected software: TYPO3 extension ameos_tarteaucitron (AMEOS - TarteAuCitron) prior to 1.2.23. Vulnerability: cross-site scripting (XSS) due to insufficient encoding, as noted in Veracode discussion of displayParticipantsFormAction. Impact: potential execution of malicious JavaScript in the vict...

5.4CVSS5.5AI score0.00467EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder