Description

Multiple cross-site scripting (XSS) vulnerabilities in the Install Tool in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2010-5100

Related Vulnerabilities

WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (7.4.37.727)

WebLogic Other Vulnerability (CVE-2020-10673)

WordPress Plugin WPS Hide Login Security Bypass (1.5.4.2)

WordPress Plugin GNU-Mailman Integration Cross-Site Scripting (1.0.6)

WordPress Plugin Airtight Security & Features Formerly Redirect Editor And Security Unspecified Vulnerability (2.1.7)

Severity

Low

Classification

CVE-2010-5100 CWE-707

Tags

Missing Update Known Vulnerabilities