Cross-site scripting (XSS) vulnerability in pi1/class.tx_dmmjobcontrol_pi1.php in the JobControl (dmmjobcontrol) extension 2.14.0 and previous versions for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via the tx_dmmjobcontrol_pi1[search][keyword] parameter to jobs/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kevin renskers dmmjobcontrol |