3 matches found
CVE-2015-1404
Cross-site scripting XSS vulnerability in the Content Rating Extbase extension 2.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-1404
TYPO3 Content Rating Extbase extension (content_rating_extbase) vulnerable: versions 2.0.3 and older are affected. Root cause is improper escaping of user input in HTML and SQL contexts, enabling Cross-Site Scripting (XSS) and SQL Injection as described in TYPO3 security bulletin TYPO3-EXT-SA-201...
CVE-2015-1404
Cross-site scripting XSS vulnerability in the Content Rating Extbase extension 2.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...