An XSS issue exists in the google_for_jobs (aka Google for Jobs) extension prior to 1.5.1 and 2.x prior to 2.1.1 for TYPO3. The extension fails to properly encode user input for output in HTML context. A TYPO3 backend user account is required to exploit the vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pega-sus google for jobs |