Multiple cross-site scripting (XSS) vulnerabilities in the WEC Discussion Forum (wec_discussion) extension 1.7.0 and previous versions for TYPO3 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-3029.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
typo3 wec_discussion_forum 1.6.0 |
||
typo3 wec_discussion_forum 1.6 |
||
typo3 wec_discussion_forum |
||
typo3 wec_discussion_forum 1.6.2 |
||
typo3 wec_discussion_forum 1.6.3 |
||
typo3 wec_discussion_forum 1.6.1 |