Lucene search
Veracode Vulnerability DatabaseVERACODE:29812HistoryMar 24, 2021 - 5:44 a.m.
Cross-site Scripting (XSS)
2021-03-2405:44:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
26.4%
typo3/cms-backend is vulnerable to cross-site scripting. An authenticated malicious user is able to inject and execute malicious script via the content elements of type menu when their referenced items get previewed in the page module.
| CPE | Name | Operator | Version |
|---|---|---|---|
| typo3/cms-backend | le | v11.1.0 | |
| typo3/cms-backend | le | v10.4.13 |
Related
osv
osv
Cross-Site Scripting in Content Preview (CType menu)
2021-03-23 01:54:17
BIT-typo3-2021-21370
2024-03-06 11:10:49
CVE-2021-21370
2021-03-23 02:15:12
typo3
typo3
Cross-Site Scripting in Content Preview
2021-03-16 00:00:00
openvas
openvas
TYPO3 XSS Vulnerability (TYPO3-CORE-SA-2021-008)
2021-03-30 00:00:00
nvd
nvd
CVE-2021-21370
2021-03-23 02:15:12
prion
prion
Cross site scripting
2021-03-23 02:15:00
cve
cve
CVE-2021-21370
2021-03-23 02:15:12
cvelist
cvelist
CVE-2021-21370 Cross-Site Scripting in Content Preview (CType menu)
2021-03-23 01:55:12
friendsofphp
friendsofphp
TYPO3-CORE-SA-2021-008: Cross-Site Scripting in Content Preview
2021-03-16 08:58:42
TYPO3-CORE-SA-2021-008: Cross-Site Scripting in Content Preview
2021-03-16 08:58:42
github
github
Cross-Site Scripting in Content Preview (CType menu)
2021-03-23 01:54:17