Description
Cross-site scripting (XSS) vulnerability in the click enlarge functionality in TYPO3 4.3.x before 4.3.9 and 4.4.x before 4.4.5 when the caching framework is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Advanced Woo Search Information Disclosure (1.99)
WordPress Plugin WooCommerce Affiliate-Coupon Affiliates Cross-Site Scripting (4.11.0.1)
WordPress Plugin WP Statistics Multiple Vulnerabilities (13.1.5)
Atlassian Jira CVE-2020-14168 Vulnerability (CVE-2020-14168)
WordPress Plugin Secure Copy Content Protection and Content Locking SQL Injection (2.6.6)