Description
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows XSS on the Extension Manager.
Remediation
References
Related Vulnerabilities
Moodle Improper Control of Generation of Code (Code Injection) (CVE-2019-14827)
WordPress Plugin WordPress Gallery Cross-Site Scripting (1.0)
WordPress Plugin MetaSlider Cross-Site Scripting (2.6.2)
SharePoint Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-0251)
Liferay DXP Insecure Default Initialization of Resource Vulnerability (CVE-2024-25610)