Vulnerability Database
296,747
Total vulnerabilities in the database
CVE-2009-3634
Cross-site scripting (XSS) vulnerability in the Frontend Login Box (aka felogin) subcomponent in TYPO3 4.2.0 through 4.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
| Software | From | Fixed in |
|---|---|---|
| typo3 / typo3 | 4.2.4 | 4.2.4.x |
| typo3 / typo3 | 4.2.5 | 4.2.5.x |
| typo3 / typo3 | 4.2.0 | 4.2.0.x |
| typo3 / typo3 | 4.2.1 | 4.2.1.x |
| typo3 / typo3 | 4.2.6 | 4.2.6.x |
| typo3 / typo3 | 4.2.2 | 4.2.2.x |
- http://marc.info/?l=oss-security&m=125632856206736&w=2
- http://marc.info/?l=oss-security&m=125633199111438&w=2
- http://secunia.com/advisories/37122
- http://typo3.org/teams/security/security-bulletins/typo3-sa-2009-016/
- http://www.securityfocus.com/bid/36801
- http://www.vupen.com/english/advisories/2009/3009
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53926
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime