2 matches found
CVE-2020-16095
The dlf aka Kitodo.Presentation extension before 3.1.2 for TYPO3 allows XSS...
CVE-2020-16095
The CVE refers to the dlf (Kitodo.Presentation) TYPO3 extension, vulnerable to cross-site scripting (XSS) in versions before 3.1.2. The root cause involves insufficient sanitization/encoding of input affecting HTML output (notably in ListView and Navigation components). Impact is XSS in web pages...