TYPO3 Multiple Cross-Site Scripting vulnerabilities in frontend

Published: Jun 3, 2024
Updated: Jun 27, 2024
GHSA: <a href="https://github.com/advisories/GHSA-6fc6-cj2j-h22x" target="_blank" rel="noopener"> GHSA-6fc6-cj2j-h22x
Severity: Medium
Exploit:

Failing to properly encode editor input, several frontend components are susceptible to Cross-Site Scripting, allowing authenticated editors to inject arbitrary HTML.