Description
Multiple cross-site scripting (XSS) vulnerabilities in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allow remote authenticated backend users to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
Drupal Core 7.x Remote Code Execution (7.0 - 7.57)
Internet Information Services Other Vulnerability (CVE-1999-0233)
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9516)
WordPress Plugin WooCommerce Cross-Site Scripting (2.6.8)
markdown-it Inefficient Regular Expression Complexity Vulnerability (CVE-2022-21670)