Lucene search
TYPO3 AssociationTYPO3-CORE-SA-2019-013HistoryMay 07, 2019 - 12:00 a.m.
Cross-Site Scripting in Fluid Engine
2019-05-0700:00:00
TYPO3 Association
typo3.org
14
0.001 Low
EPSS
Percentile
45.9%
It has been discovered that the Fluid Engine (package typo3fluid/fluid) is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like the following.
Related
cvelist
cvelist
CVE-2020-15241 Cross-Site Scripting in TYPO3 Fluid Engine
2020-10-08 20:15:17
cve
cve
CVE-2020-15241
2020-10-08 21:15:10
prion
prion
Cross site scripting
2020-10-08 21:15:00
friendsofphp
friendsofphp
Cross-Site Scripting in Fluid Engine
2019-05-07 06:59:14
Cross-Site Scripting in Fluid Engine
2019-05-07 06:59:14
Cross-Site Scripting in Fluid Engine
2019-05-07 09:33:52
nvd
nvd
CVE-2020-15241
2020-10-08 21:15:10
github
github
Cross-Site Scripting in ternary conditional operator
2020-10-08 19:55:53
osv
osv
Cross-Site Scripting in ternary conditional operator
2020-10-08 19:55:53
BIT-typo3-2020-15241
2024-03-06 11:11:41
CVE-2020-15241
2020-10-08 21:15:10
veracode
veracode
Cross-Site Scripting (XSS)
2020-10-09 04:11:33
openvas
openvas