0.002 Low
EPSS
Percentile
52.6%
Typo3 CMS is vulnerable to cross-site scripting (XSS) attacks. The library’s flashplayer does not validate flash and image files, allowing a malicious user to embed an external flash video to inject and execute arbitrary script.
typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/