3 matches found
EUVD-2010-0358
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in the KJ: Imagelightbox kjimagelightbox2 extension 2.0.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2008-2490...
CVE-2008-2490
The CVE-2008-2490 entry concerns the TYPO3 extension KJ Image Lightbox 2 (kj_imagelightbox2). Affected version: 1.4.2 and earlier. The root cause is a cross-site scripting (XSS) vulnerability in the extension that allows remote attackers to inject arbitrary web script or HTML via unspecified user...