Lucene search
Ubuntu.comUB:CVE-2012-2112HistoryAug 27, 2012 - 12:00 a.m.
CVE-2012-2112
2012-08-2700:00:00
ubuntu.com
ubuntu.com
10
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.0%
Cross-site scripting (XSS) vulnerability in the Exception Handler in TYPO3
4.4.x before 4.4.15, 4.5.x before 4.5.15, 4.6.x before 4.6.8, and 4.7
allows remote attackers to inject arbitrary web script or HTML via
exception messages.
Notes
| Author | Note |
|---|---|
| jdstrand | according to upstream, requires 3rd-party extensions |
Related
osv
osv
Typo3 Exception Handler XSS
2022-05-17 01:46:40
github
github
Typo3 Exception Handler XSS
2022-05-17 01:46:40
prion
prion
Cross site scripting
2012-08-27 21:55:00
typo3
typo3
Cross-Site Scripting Vulnerability in TYPO3 Core
2012-04-17 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2455-1)
2012-04-30 00:00:00
Debian Security Advisory DSA 2455-1 (typo3-src)
2012-04-30 00:00:00
FreeBSD Ports: typo3
2012-04-30 00:00:00
debian
debian
[SECURITY] [DSA 2455-1] typo3-src security update
2012-04-20 18:24:09
cve
cve
CVE-2012-2112
2012-08-27 21:55:00
nessus
nessus
FreeBSD : typo -- XSS (67516177-88ec-11e1-9a10-0023ae8e59f0)
2012-04-19 00:00:00
Debian DSA-2455-1 : typo3-src - missing input sanitization
2012-04-23 00:00:00
freebsd
freebsd
typo -- Cross-Site Scripting
2012-04-17 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2455-1] typo3-src security update
2012-04-23 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
69.0%
Related for UB:CVE-2012-2112