2 matches found
CVE-2015-8759
Cross-site scripting XSS vulnerability in the typoLink function in TYPO3 6.2.x before 6.2.16 and 7.x before 7.6.1 allows remote authenticated editors to inject arbitrary web script or HTML via a link field...
CVE-2015-8759
CVE-2015-8759 describes a Cross-site Scripting (XSS) vulnerability in TYPO3. The flaw lies in the typoLink function, making TYPO3 6.2.x prior to 6.2.16 and 7.x prior to 7.6.1 susceptible when a link field is crafted by an authenticated editor. Impact described: ability to inject arbitrary web scr...