Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:14 p.m.7 views

CVE-2020-15241

TYPO3 Fluid Engine package typo3fluid/fluid before versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like showFullName ? fullName : defaultValue. Updated versions of this package are...

6.1CVSS6.1AI score0.00966EPSS
Exploits1
NVD
NVD
added 2020/10/08 9:15 p.m.21 views

CVE-2020-15241

TYPO3 Fluid Engine package typo3fluid/fluid before versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like showFullName ? fullName : defaultValue. Updated versions of this package are...

6.1CVSS0.00966EPSS
Exploits1References3
Cvelist
Cvelist
added 2020/10/08 8:15 p.m.25 views

CVE-2020-15241 Cross-Site Scripting in TYPO3 Fluid Engine

TYPO3 Fluid Engine package typo3fluid/fluid before versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like showFullName ? fullName : defaultValue. Updated versions of this package are...

4.7CVSS6AI score0.00966EPSS
Exploits1References3
CVE
CVE
added 2020/10/08 8:15 p.m.104 views

CVE-2020-15241

CVE-2020-15241 affects TYPO3 Fluid Engine (package typo3fluid/fluid). Vulnerable up to versions: 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1. The issue is cross-site scripting when using the ternary conditional operator in templates such as {showFullName ? fullName : defaultValue}. Updated ...

6.1CVSS5.1AI score0.00966EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder