haffner/jh_captcha extension of Typo3 is vulnerable to cross-site scripting (XSS). A remote attacker is able to inject arbitrary Javascript into a victim’s browser using the TypoScript parameters in the ReCaptcha Validator and View Helper pages.
CPE | Name | Operator | Version |
---|---|---|---|
haffner/jh_captcha | le | 2.1.3 | |
haffner/jh_captcha | le | 3.0.2 |