Multiple cross-site scripting (XSS) vulnerabilities in TYPO3 4.2.x prior to 4.2.15, 4.3.x prior to 4.3.7, and 4.4.x prior to 4.4.4 allow remote malicious users to inject arbitrary web script or HTML via vectors related to (1) the RemoveXSS function, and allow remote authenticated users to inject arbitrary web script or HTML via vectors related to (2) the backend.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
typo3 typo3 4.2.4 |
||
typo3 typo3 4.2.10 |
||
typo3 typo3 4.2.11 |
||
typo3 typo3 4.2.12 |
||
typo3 typo3 4.2.9 |
||
typo3 typo3 4.2.2 |
||
typo3 typo3 4.2.14 |
||
typo3 typo3 4.3.1 |
||
typo3 typo3 4.3.6 |
||
typo3 typo3 4.4.1 |
||
typo3 typo3 4.4.3 |
||
typo3 typo3 4.2.3 |
||
typo3 typo3 4.2.5 |
||
typo3 typo3 4.2.6 |
||
typo3 typo3 4.2.7 |
||
typo3 typo3 4.2.8 |
||
typo3 typo3 4.3.2 |
||
typo3 typo3 4.3.3 |
||
typo3 typo3 4.3.4 |
||
typo3 typo3 4.3.5 |
||
typo3 typo3 4.2.0 |
||
typo3 typo3 4.2.1 |
||
typo3 typo3 4.2.13 |
||
typo3 typo3 4.3.0 |
||
typo3 typo3 4.4 |
||
typo3 typo3 4.4.2 |