0.001 Low
EPSS
Percentile
49.7%
Typo3 CMS is vulnerable to cross-site scripting (XSS) attacks. A malicious user can inject and execute arbitrary web script when installing the TER extension by passing a json request to the application.
typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-010/