Vulnerability Database

296,172

Total vulnerabilities in the database

Cross-Site Scripting in TYPO3 CMS Backend

Failing to properly encode user input, backend forms are vulnerable to Cross-Site Scripting. A valid backend user account is needed to exploit this vulnerability.

CVSS v3:

  • Severity: Unknown
  • Score:
  • AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
Composer icon typo3 / cms 8.0.0 8.7.5